Full title: Typo3 JobControl 2.14.0 Cross Site Scripting / SQL Injection Vulnerability Category: web applications Platform: php Typo3 JobControl version 2.14.0 suffers from cross site scripting and remote SQL injection vulnerabilities. Typo3 no longer provides updates for this extension and it is considered unsafe to use. # 0day.today @ http://0day.today/