Cross-Site Scripting Vulnerability in T3BLOG Extension for TYPO3
CVE-2010-0797

Currently unrated

Key Information:

Vendor: Snowflake
Status: T3blog
Vendor: CVE Published:; 2 March 2010

What is CVE-2010-0797?

The T3BLOG extension for TYPO3 versions prior to 0.6.2 is susceptible to a cross-site scripting (XSS) vulnerability, enabling remote attackers to inject arbitrary web scripts or HTML. This can lead to unauthorized actions on behalf of users, potential data theft, and other security risks. Appropriate security measures should be employed to mitigate this threat and protect users from the malicious execution of scripts.

References

http://www.securityfocus.com/bid/38030

vdb-entryx_refsource_BID

http://secunia.com/advisories/38388

third-party-advisoryx_refsource_SECUNIA

http://typo3.org/teams/security/security-bulletins/typo3-...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 2, 2010

CVE-2010-0797 Data

JSON

Snowflake

What is CVE-2010-0797?

References

Timeline