vulnerability
FreeBSD: VID-0EAB001A-9708-11EC-96C9-589CFC0F81B0 (CVE-2022-23638): typo3 -- XSS vulnerability in svg-sanitize
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | 2022-02-14 | 2022-11-04 | 2022-11-04 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
2022-02-14
Added
2022-11-04
Modified
2022-11-04
Description
svg-sanitizer is a SVG/XML sanitizer written in PHP. A cross-site scripting vulnerability impacts all users of the `svg-sanitizer` library prior to version 0.15.0. This issue is fixed in version 0.15.0. There is currently no workaround available.
Solution(s)
freebsd-upgrade-package-typo3-10-php74freebsd-upgrade-package-typo3-11-php74freebsd-upgrade-package-typo3-11-php80freebsd-upgrade-package-typo3-11-php81
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.