CVE-2013-7078

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in the Extbase Framework in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6, when the Rewritten Property Mapper is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified input, which is returned in an error message. NOTE: this might be the same vulnerability as CVE-2013-7072.

🔗 References (12)

cve@mitrehttp://osvdb.org/100885
cve@mitrehttp://seclists.org/oss-sec/2013/q4/473
cve@mitrehttp://seclists.org/oss-sec/2013/q4/487
cve@mitrehttp://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
cve@mitrehttp://www.securityfocus.com/bid/64239
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/89629
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/100885
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/oss-sec/2013/q4/473
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/oss-sec/2013/q4/487
af854a3a-2127-422b-91ae-364da2661108http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/64239
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/89629

Is Your Infrastructure Affected by CVE-2013-7078?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-7078

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-7078?