Cross-Site Request Forgery in mm_forum
Moderate severity
Unreviewed
Published
Feb 15, 2022
to the GitHub Advisory Database
•
Updated Feb 1, 2023
Description
Published by the National Vulnerability Database
Jul 7, 2020
Published to the GitHub Advisory Database
Feb 15, 2022
Last updated
Feb 1, 2023
The mm_forum extension through 1.9.5 for TYPO3 allows XSS that can be exploited via CSRF.
References