1 results (0.001 seconds)
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2010-0328
https://notcve.org/view.php?id=CVE-2010-0328
Cross-site scripting (XSS) vulnerability in the Unit Converter (cs2_unitconv) extension 1.0.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de comandos en sitios cruzados(XSS) en la extensión de TYPO3 de convertidor de unidades (cs2_unitconv) v1.0.4 permite a atacantes remotos inyectar HTML o scripts web a través de vectores no especificados. • http://secunia.com/advisories/38166 http://typo3.org/extensions/repository/view/cs2_unitconv/1.0.5 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-021 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •