Candidate: CVE-2011-4629
PublicDate: 2019-11-06 17:15:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4629
 http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2011-001/
Description:
 Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and
 4.5.x before 4.5.4 allows remote attackers to inject arbitrary web script
 or HTML via the admin panel.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: Georg Ringer
Assigned-to: 
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N [5.4 MEDIUM]

Patches_typo3-src:
upstream_typo3-src: released (4.3.12,4.5.4)
hardy_typo3-src: ignored (reached end-of-life)
lucid_typo3-src: ignored (reached end-of-life)
maverick_typo3-src: ignored (reached end-of-life)
natty_typo3-src: released (4.3.9+dfsg1-1+squeeze1build0.11.04.1)
oneiric_typo3-src: ignored (reached end-of-life)
precise_typo3-src: not-affected (4.5.10+dfsg1-1)
quantal_typo3-src: not-affected (4.5.10+dfsg1-1)
raring_typo3-src: not-affected (4.5.10+dfsg1-1)
saucy_typo3-src: not-affected (4.5.10+dfsg1-1)
devel_typo3-src: not-affected (4.5.10+dfsg1-1)