CVE-2013-4744

TYPO3 PHPUnit <3.5.15 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the PHPUnit extension before 3.5.15 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (4)

[Broken Link] http://osvdb.org/89132

[Patch] http://typo3.org/extensions/repository/view/phpunit

[Vendor Advisory] http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-001/

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/81194

Scores

EPSS 0.0037

EPSS Percentile 58.3%

Details

CWE

CWE-79

Status published

Products (3)

phpunit_project/phpunit < 3.5.15

oliverklee/phpunit < 3.5.15Packagist

n/a/n/a

Published Jul 01, 2013

Tracked Since Feb 18, 2026