CVE-2012-1606

Priority
Medium
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Backend
component in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0
through 4.6.6, 4.7, and 6.0 allow remote authenticated backend users to
inject arbitrary web script or HTML via unspecified vectors.
References
Notes
 tyhicks> Affected Versions: 4.4.0 up to 4.4.13, 4.5.0 up to 4.5.13,
  4.6.0 up to 4.6.6
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):needed
Ubuntu 14.04 LTS (Trusty Tahr):needed
Ubuntu 15.04 (Vivid Vervet):needed
Ubuntu 15.10 (Wily Werewolf):DNE
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:17:14 UTC (commit 9756)