CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2008-4661
https://notcve.org/view.php?id=CVE-2008-4661
Cross-site scripting (XSS) vulnerability in the Page Improvements (sm_pageimprovements) 1.1.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la extensión Page Improvements (sm_pageimprovements) v1.1.0 y anteriores para TYPO3; permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados. • http://typo3.org/extensions/repository/view/sm_pageimprovements/0.3.0/info/ChangeLog http://typo3.org/teams/security/security-bulletins/typo3-20081020-1 http://www.vupen.com/english/advisories/2008/2870 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •