CVE-2012-2112
Typo3 < 4.4.15 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the Exception Handler in TYPO3 4.4.x before 4.4.15, 4.5.x before 4.5.15, 4.6.x before 4.6.8, and 4.7 allows remote attackers to inject arbitrary web script or HTML via exception messages.
References (8)
Scores
EPSS
0.0050
EPSS Percentile
65.8%
Classification
CWE
CWE-79
Status
published
Affected Products (41)
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
typo3/typo3
... and 26 more
Timeline
Published
Aug 27, 2012
Tracked Since
Feb 18, 2026