CVE-2012-1606 in TYPO3info

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the Backend component in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allow remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

Responsible

Reservation

03/12/2012

Disclosure

09/04/2012

Entries

VDB-5011

CPE

ready

CVSS

4.6

EPSS

0.00287

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2012-1606
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2012-1606
CVE Detailshttps://www.cvedetails.com/cve/CVE-2012-1606/

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!