CVE-2015-8760

The Flvplayer component in TYPO3 6.2.x before 6.2.16 allows remote attackers to embed Flash videos from external domains via unspecified vectors, aka "Cross-Site Flashing."

Date published : 2016-01-08

http://www.securityfocus.com/bid/79210

http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/