Cross-site Scripting Vulnerability in TYPO3's Wir ber uns Extension
CVE-2008-5799

Currently unrated

Key Information:

Vendor: Typo3
Status: Wir Ber Uns Extension
Vendor: CVE Published:; 31 December 2008

What is CVE-2008-5799?

The Wir ber uns (fsmi_people) extension for TYPO3 versions 0.0.24 and earlier contains a cross-site scripting (XSS) vulnerability, allowing remote attackers to inject arbitrary web scripts or HTML into affected installations. The exploitation occurs through unspecified vectors, which can lead to unauthorized actions performed on behalf of the affected users, potentially compromising sensitive user data and the overall integrity of the web application. It is crucial for users of this extension to review their installations and apply necessary patches or updates as recommended by TYPO3 security advisories.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/46471

vdb-entryx_refsource_XF

http://typo3.org/teams/security/security-bulletins/typo3-...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/32237

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Dec 31, 2008
Vulnerability Reserved
Dec 30, 2008

Typo3

What is CVE-2008-5799?

References

Timeline