Description

Cross-site scripting (XSS) vulnerability in the Install Tool in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2012-3531

Related Vulnerabilities

MySQL CVE-2020-14794 Vulnerability (CVE-2020-14794)

MySQL CVE-2018-2640 Vulnerability (CVE-2018-2640)

WordPress Plugin Mailtree Log Mail Cross-Site Scripting (1.0.0)

WordPress Plugin User Meta 'uploader.php' Arbitrary File Upload (1.1.1)

MediaWiki Improper Privilege Management Vulnerability (CVE-2020-10534)

Severity

Medium

Classification

CVE-2012-3531 CWE-707

Tags

Missing Update Known Vulnerabilities