CVE-2009-3634
Typo3 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the Frontend Login Box (aka felogin) subcomponent in TYPO3 4.2.0 through 4.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
References (7)
Scores
EPSS
0.0044
EPSS Percentile
63.0%
Classification
CWE
CWE-79
Status
published
Affected Products (7)
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
n/a/n/a
Timeline
Published
Nov 02, 2009
Tracked Since
Feb 18, 2026