Lucene search
TYPO3 AssociationTYPO3-CORE-SA-2021-004HistoryMar 16, 2021 - 12:00 a.m.
Cross-Site Scripting in Form Framework
2021-03-1600:00:00
TYPO3 Association
typo3.org
30
form framework
cross-site scripting
backend module
vulnerability
EPSS
0.001
Percentile
26.2%
It has been discovered that the Form Designer backend module of the Form Framework is vulnerable to cross-site scripting. A valid backend user account with access to the form module is needed to exploit this vulnerability.
Related
osv
osv
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in typo3/cms-form
2021-03-23 01:54:06
BIT-typo3-2021-21358
2024-03-06 11:11:04
CVE-2021-21358
2021-03-23 02:15:12
openvas
openvas
TYPO3 XSS Vulnerability (TYPO3-CORE-SA-2021-004)
2021-03-30 00:00:00
cve
cve
CVE-2021-21358
2021-03-23 02:15:12
veracode
veracode
Cross-site Scripting (XSS)
2021-03-24 03:32:42
friendsofphp
friendsofphp
TYPO3-CORE-SA-2021-004: Cross-Site Scripting in Form Framework
2021-03-16 08:59:55
TYPO3-CORE-SA-2021-004: Cross-Site Scripting in Form Framework
2021-03-16 08:59:55
nvd
nvd
CVE-2021-21358
2021-03-23 02:15:12
cvelist
cvelist
github
github
prion
prion
Cross site scripting
2021-03-23 02:15:00