Description
Cross-site scripting (XSS) vulnerability in the Backend component in TYPO3 6.2.x before 6.2.19 allows remote attackers to inject arbitrary web script or HTML via the module parameter when creating a bookmark.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP125 Multiple Cross-Site Scripting Vulnerabilities (1.4.4)
MongoDb Improper Authentication Vulnerability (CVE-2014-8180)
WordPress Plugin WordPress Appointment Schedule Booking System Cross-Site Scripting (1.0)
XOOPS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-12138)
WordPress Plugin ImageLinks Interactive Image Builder for WordPress Cross-Site Scripting (1.5.2)