CVE-2011-4630

Name of the Vulnerable Software and Affected Versions TYPO3 versions 4.3.x through 4.3.11 TYPO3 versions 4.4.x through 4.4.8 TYPO3 versions 4.5.x through 4.5.3

Description The issue allows remote attackers to inject arbitrary web script or HTML via the browse links wizard, which is a type of Cross-site Scripting (XSS) attack. This occurs when an attacker sends malicious input to the application, which is then executed by the user's browser, potentially leading to unauthorized actions or data theft.

Recommendations For versions 4.3.x through 4.3.11, update to version 4.3.12 or later. For versions 4.4.x through 4.4.8, update to version 4.4.9 or later. For versions 4.5.x through 4.5.3, update to version 4.5.4 or later.