Cross-Site Scripting Vulnerability in WT Gallery Extension for TYPO3
CVE-2008-2526

Currently unrated

Key Information:

Vendor: Typo3
Status: Wt Gallery
Vendor: CVE Published:; 3 June 2008

What is CVE-2008-2526?

The WT Gallery extension for TYPO3 exhibits a cross-site scripting (XSS) vulnerability that enables remote attackers to inject arbitrary web scripts or HTML code. This vulnerability affects version 2.6.2 and earlier, compromising the security of web applications using the extension. Attackers can exploit this flaw through unspecified vectors, potentially leading to the execution of malicious scripts in the context of a user's session.

References

http://secunia.com/advisories/30217

third-party-advisoryx_refsource_SECUNIA

http://typo3.org/teams/security/security-bulletins/typo3-...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/29182

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 3, 2008
Vulnerability Reserved
Jun 3, 2008

Typo3

What is CVE-2008-2526?

References

Timeline