Lucene search
TYPO3 AssociationTYPO3-CORE-SA-2021-010HistoryJul 20, 2021 - 12:00 a.m.
Cross-Site Scripting in Query Generator & Query View
2021-07-2000:00:00
TYPO3 Association
typo3.org
6
0.001 Low
EPSS
Percentile
21.4%
Failing to properly encode error messages, the components QueryGenerator and QueryView are vulnerable to both reflected and persistent cross-site scripting. A valid backend user account having administrator privileges is needed to exploit this vulnerability.
Related
prion
prion
Cross site scripting
2021-07-20 15:15:00
cvelist
cvelist
CVE-2021-32668 Cross-Site Scripting in Query Generator & Query View
2021-07-20 14:45:13
cnvd
cnvd
TYPO3 Cross-Site Scripting Vulnerability (CNVD-2022-17986)
2021-07-22 00:00:00
osv
osv
Cross-Site Scripting in Query Generator & Query View
2021-07-22 19:36:58
CVE-2021-32668
2021-07-20 15:15:10
BIT-typo3-2021-32668
2024-03-06 11:10:40
cve
cve
CVE-2021-32668
2021-07-20 15:15:10
nvd
nvd
CVE-2021-32668
2021-07-20 15:15:10
friendsofphp
friendsofphp
github
github
Cross-Site Scripting in Query Generator & Query View
2021-07-22 19:36:58
openvas
openvas