CVE-2009-0257 (retired)

Priority
Description
Multiple cross-site scripting (XSS) vulnerabilities in TYPO3 4.0.0 through
4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 allow remote attackers
to inject arbitrary web script or HTML via the (1) name and (2) content of
indexed files to the (a) Indexed Search Engine (indexed_search) system
extension; (b) unspecified test scripts in the ADOdb system extension; and
(c) unspecified vectors in the Workspace module.
Package
Upstream:released (4.0.10, 4.1.8, 4.2.4)
Patches:
Vendor:http://www.debian.org/security/2009/dsa-1711
More Information

Updated: 2019-03-26 11:46:57 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)