Description

Cross-site scripting (XSS) vulnerability in the Backend User Administration Module in TYPO3 6.0.x before 6.0.12 and 6.1.x before 6.1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2013-7077

Related Vulnerabilities

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.12)

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6264)

SharePoint Origin Validation Error Vulnerability (CVE-2020-16951)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2354)

Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6065)

Severity

Medium

Classification

CVE-2013-7077 CWE-707

Tags

Missing Update Known Vulnerabilities