CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2012-5888
https://notcve.org/view.php?id=CVE-2012-5888
Cross-site scripting (XSS) vulnerability in Basic SEO Features (seo_basics) extension before 0.8.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Una vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en la extensión "Basic SEO Features" (seo_basics) antes de v0.8.2 para TYPO3 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://forge.typo3.org/issues/35532 http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-006 http://www.securityfocus.com/bid/52772 https://exchange.xforce.ibmcloud.com/vulnerabilities/74483 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •