Cross-site scripting (XSS) vulnerability in the Userdata Create/Edit (sg_userdata) extension before 0.91.0 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| stefan_geith | sg_userdata | 0.90.100 |
| stefan_geith | sg_userdata | 0.90.109 |
| stefan_geith | sg_userdata | 0.90.111 |
| stefan_geith | sg_userdata | 0.90.210 |
| stefan_geith | sg_userdata | 0.90.101 |
| stefan_geith | sg_userdata | * |
| stefan_geith | sg_userdata | 0.90.202 |