Cross-site scripting (XSS) vulnerability in the layout wizard in the Grid Elements (gridelements) extension before 1.5.1 and 2.0.x before 2.0.3 for TYPO3 allows remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2014-06-04T14:00:00
Updated: 2014-06-04T12:57:00
Reserved: 2014-06-03T00:00:00
Link: CVE-2014-3949
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-06-04T14:55:05.467
Modified: 2014-06-05T17:32:21.090
Link: CVE-2014-3949
JSON object: View
Redhat Information
No data.
CWE