CVE-2020-11064 in TYPO3정보

요약 (영어)

In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.17 and greater than or equal to 10.0.0 and less than 10.4.2, it has been discovered that HTML placeholder attributes containing data of other database records are vulnerable to cross-site scripting. A valid backend user account is needed to exploit this vulnerability. This has been fixed in 9.5.17 and 10.4.2.

책임이 있는

GitHub, Inc.

예약하다

2020. 03. 30.

엔트리

VulDB provides additional information and datapoints for this CVE:

아이디취약성CWE악용 대책CVE
155186TYPO3 HTML Placeholder Attribute HTML injection79정의되지 않음공식 수정CVE-2020-11064

설명

CPE

CWE

CVSS

익스플로잇

역사

차이

연결하다

위협 인텔리전스

API JSON

API XML

API CSV

이전개요다음

Want to stay up to date on a daily basis?

Enable the mail alert feature now!