Skip to main content
CVE-2012-6148 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the function menu API in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Typo3
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2012-6147 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the tree render API (TCA-Tree) in the Backend API in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Typo3
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2012-6145 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Typo3
NVD
CVSS 2.0
3.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy