Posted on

TYPO3 up to 9.5.16/10.4.1 HTML Placeholder Attribute cross site scripting

A vulnerability was found in TYPO3 up to 9.5.16/10.4.1 (Content Management System). It has been rated as problematic. Affected by this issue is an unknown part of the component HTML Placeholder Attribute Handler. Upgrading to version 9.5.17 or 10.4.2 eliminates this vulnerability.