1 results (0.031 seconds)

CVSS: 4.3EPSS: 0%CPEs: 12EXPL: 0

Cross-site scripting (XSS) vulnerability in the Javascript and CSS Optimizer extension before 1.1.14 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad Cross-site scripting (XSS) en la extensión Javascript y CSS Optimizer anterior a v1.1.14 para TYPO3, permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarias a través de vectores no especificados. • http://secunia.com/advisories/53253 http://typo3.org/extensions/repository/view/js_css_optimizer http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-002 https://exchange.xforce.ibmcloud.com/vulnerabilities/81583 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •