Thu. 13th November, 2008
It has been discovered that the backend module "file" is vulnerable to Cross-Site Scripting (XSS).
This is a companion discussion topic for the original entry at https://typo3.org/article/cross-site-scripting-vulnerability-in-typo3-core-1/