CVE-2012-1606

Priority
Medium
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Backend
component in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0
through 4.6.6, 4.7, and 6.0 allow remote authenticated backend users to
inject arbitrary web script or HTML via unspecified vectors.
References
Notes
tyhicks> Affected Versions: 4.4.0 up to 4.4.13, 4.5.0 up to 4.5.13,
4.6.0 up to 4.6.6
Package
Upstream:needs-triage
Ubuntu 10.04 LTS (Lucid Lynx):ignored (reached end-of-life)
Ubuntu 12.04 LTS (Precise Pangolin):needed
Ubuntu 12.10 (Quantal Quetzal):needed
Ubuntu 13.04 (Raring Ringtail):ignored (reached end-of-life)
Ubuntu 13.10 (Saucy Salamander):needed
Ubuntu 14.04 LTS (Trusty Tahr):needed
More Information

Valid XHTML 1.0 Strict

Updated: 2014-01-27 19:15:24 UTC (commit 7690)