Cross-site scripting (XSS) vulnerability in the tree render API (TCA-Tree) in the Backend API in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2013-07-01T21:00:00
Updated: 2024-08-06T21:28:39.744Z
Reserved: 2012-12-06T00:00:00
Link: CVE-2012-6147
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-07-01T21:55:01.703
Modified: 2024-11-21T01:45:55.000
Link: CVE-2012-6147
Redhat
No data.