NuytsTech Security

CVE-2009-3634

by ·

Cross-site scripting (XSS) vulnerability in the Frontend Login Box (aka felogin) subcomponent in TYPO3 4.2.0 through 4.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Date published : 2009-11-02

http://www.securityfocus.com/bid/36801

http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-016/

Tags: