CVE-2008-5656

Cross-site scripting (XSS) vulnerability in the frontend plugin for the felogin system extension in TYPO3 4.2.0, 4.2.1 and 4.2.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:typo3:typo3:4.2.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:4.2.2:*:*:*:*:*:*:*

History

21 Nov 2024, 00:54

Type Values Removed Values Added
References () http://typo3.org/teams/security/security-bulletins/typo3-20081113-2/ - () http://typo3.org/teams/security/security-bulletins/typo3-20081113-2/ -
References () http://www.securityfocus.com/bid/32284 - () http://www.securityfocus.com/bid/32284 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/46591 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/46591 -

Information

Published : 2008-12-17 20:30

Updated : 2024-11-21 00:54


NVD link : CVE-2008-5656

Mitre link : CVE-2008-5656

CVE.ORG link : CVE-2008-5656


JSON object : View

Products Affected

typo3

  • typo3
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')