cpe:/a:typo3:typo3:6.2 cpe:/a:typo3:typo3:6.2.0:alpha1 cpe:/a:typo3:typo3:6.2.0:alpha2 cpe:/a:typo3:typo3:6.2.0:alpha3 cpe:/a:typo3:typo3:6.2.0:beta1 cpe:/a:typo3:typo3:6.2.0:beta2 cpe:/a:typo3:typo3:6.2.0:beta3 cpe:/a:typo3:typo3:6.2.0:beta4 cpe:/a:typo3:typo3:6.2.0:beta5 cpe:/a:typo3:typo3:6.2.0:beta6 cpe:/a:typo3:typo3:6.2.0:beta7 cpe:/a:typo3:typo3:6.2.0:rc1 cpe:/a:typo3:typo3:6.2.0:rc2 cpe:/a:typo3:typo3:6.2.1 cpe:/a:typo3:typo3:6.2.2 cpe:/a:typo3:typo3:6.2.3 cpe:/a:typo3:typo3:6.2.4 cpe:/a:typo3:typo3:6.2.5 cpe:/a:typo3:typo3:6.2.6 cpe:/a:typo3:typo3:6.2.7 cpe:/a:typo3:typo3:6.2.8 cpe:/a:typo3:typo3:6.2.9 cpe:/a:typo3:typo3:6.2.10 cpe:/a:typo3:typo3:6.2.10:rc1 cpe:/a:typo3:typo3:6.2.11 cpe:/a:typo3:typo3:6.2.12 cpe:/a:typo3:typo3:6.2.13 cpe:/a:typo3:typo3:6.2.14 cpe:/a:typo3:typo3:6.2.15 CVE-2015-8756 2016-01-08T14:59:22.350-05:00 2016-01-11T21:56:04.373-05:00 3.5 NETWORK MEDIUM SINGLE_INSTANCE NONE PARTIAL NONE http://nvd.nist.gov 2016-01-11T15:43:30.243-05:00 SECTRACK 1034486 CONFIRM http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/ Cross-site scripting (XSS) vulnerability in the search result view in the Indexed Search (indexed_search) component in TYPO3 6.2.x before 6.2.16 allows remote authenticated editors to inject arbitrary web script or HTML via unspecified vectors.