Lucene search
GoogleOSV:CVE-2021-21340HistoryMar 23, 2021 - 2:15 a.m.
CVE-2021-21340
2021-03-2302:15:12
Google
osv.dev
2
0.001 Low
EPSS
Percentile
26.4%
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 10.4.14, 11.1.1 it has been discovered that database fields used as descriptionColumn are vulnerable to cross-site scripting when their content gets previewed. A valid backend user account is needed to exploit this vulnerability. This is fixed in versions 10.4.14, 11.1.1 .
Related
friendsofphp
friendsofphp
TYPO3-CORE-SA-2021-007: Cross-Site Scripting in Content Preview
2021-03-16 09:01:14
TYPO3-CORE-SA-2021-007: Cross-Site Scripting in Content Preview
2021-03-16 09:01:14
veracode
veracode
Cross-site Scripting (XSS)
2021-03-24 06:15:48
openvas
openvas
TYPO3 XSS Vulnerability (TYPO3-CORE-SA-2021-007)
2021-03-30 00:00:00
nvd
nvd
CVE-2021-21340
2021-03-23 02:15:12
prion
prion
Cross site scripting
2021-03-23 02:15:00
cvelist
cvelist
CVE-2021-21340 Cross-Site Scripting in Content Preview
2021-03-23 01:50:34
github
github
Cross-Site Scripting in Content Preview
2021-03-23 01:53:47
typo3
typo3
Cross-Site Scripting in Content Preview
2021-03-16 00:00:00
cve
cve
CVE-2021-21340
2021-03-23 02:15:12
osv
osv
Cross-Site Scripting in Content Preview
2021-03-23 01:53:47
BIT-typo3-2021-21340
2024-03-06 11:11:15