Cross-site scripting (XSS) vulnerability in the leave comment (feedback) feature in Typo 5.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) comment[author] (Name) and (2) comment[url] (Website) parameters.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2008-11-04T00:00:00
Updated: 2017-08-07T12:57:01
Reserved: 2008-11-03T00:00:00
Link: CVE-2008-4903
JSON object: View
NVD Information
Status : Modified
Published: 2008-11-04T00:58:40.180
Modified: 2017-08-08T01:32:59.203
Link: CVE-2008-4903
JSON object: View
Redhat Information
No data.
CWE