CVE-2013-4744

NONE
Published Jul 1, 201313y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jul 1, 2013 13y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site scripting (XSS) vulnerability in the PHPUnit extension before 3.5.15 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
phpunit_projectphpunit* <3.5.15

References 4

  • osvdb.org http://osvdb.org/89132
    Broken Link
  • typo3.org http://typo3.org/extensions/repository/view/phpunit
    Patch
  • typo3.org http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-001/
    Vendor Advisory
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/81194
    VDB Entry

Remediation

  • typo3.org http://typo3.org/extensions/repository/view/phpunit
    Patch