CVE-2010-5098

N/A Unknown

Published: May 21, 2012 Modified: April 29, 2026

Description

Cross-site scripting (XSS) vulnerability in the FORM content object in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/35770

Source: secalert@redhat.com

Vendor Advisory

http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022/

Source: secalert@redhat.com

Vendor Advisory

http://www.openwall.com/lists/oss-security/2011/01/13/2

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/05/10/7

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/05/11/3

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2012/05/12/5

Source: secalert@redhat.com

http://www.osvdb.org/70122

Source: secalert@redhat.com

http://www.securityfocus.com/bid/45470

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/64179

Source: secalert@redhat.com

http://secunia.com/advisories/35770