Thu. 13th November, 2008
It has been discovered that TYPO3 core is susceptible to two Cross Site Scripting (XSS) issues. The frontend plugin of system extension "felogin" and the backend module "file" are vulnerable.
This is a companion discussion topic for the original entry at https://typo3.org/article/cross-site-scripting-vulnerabilities-in-typo3-core/