Lucene search
TYPO3 AssociationTYPO3-CORE-SA-2021-013HistoryAug 10, 2021 - 12:00 a.m.
Cross-Site Scripting via Rich-Text Content
2021-08-1000:00:00
TYPO3 Association
typo3.org
20
0.001 Low
EPSS
Percentile
36.3%
Failing to properly parse, sanitize and encode malicious rich-text content, the content rendering process in the website frontend is vulnerable to cross-site scripting. Corresponding rendering instructions via TypoScript functionality HTMLparser do not consider all potentially malicious HTML tag & attribute combinations per default.
Related
openvas
openvas
TYPO3 XSS Vulnerability (TYPO3-CORE-SA-2021-013)
2021-08-11 00:00:00
friendsofphp
friendsofphp
TYPO3-CORE-SA-2021-013: Cross-Site Scripting via Rich-Text Content
2021-08-10 07:50:44
TYPO3-CORE-SA-2021-013: Cross-Site Scripting via Rich-Text Content
2021-08-10 07:50:44
prion
prion
Cross site scripting
2021-08-10 17:15:00
cve
cve
CVE-2021-32768
2021-08-10 17:15:10
cnvd
cnvd
TYPO3 Cross-Site Scripting Vulnerability (CNVD-2022-17973)
2021-08-16 00:00:00
osv
osv
BIT-typo3-2021-32768
2024-03-06 11:10:25
CVE-2021-32768
2021-08-10 17:15:10
Cross-Site Scripting via Rich-Text Content
2021-08-19 15:53:12
cvelist
cvelist
CVE-2021-32768 Cross-Site Scripting via Rich-Text Content
2021-08-10 16:30:11
ubuntucve
ubuntucve
CVE-2021-32768
2021-08-10 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2021-08-11 07:43:25
nvd
nvd
CVE-2021-32768
2021-08-10 17:15:10
github
github
Cross-Site Scripting via Rich-Text Content
2021-08-19 15:53:12