Vulnerability Database

typo3 / cms-core

• You can search for specific versions with https://synscan.net/product/cms--core/1.2.3

Title	Severity	Exploit	Date	Affected Version
TYPO3 Cross-Site Scripting in Link Handling	Medium		May 30, 2024	>= 10.0.0 < 10.2.1 >= 8.0.0 < 8.7.30 >= 9.0.0 < 9.5.12
TYPO3 Cross-Site Scripting in Form Framework validation handling	Medium		May 30, 2024	>= 10.0.0 < 10.2.1 >= 8.0.0 < 8.7.30 >= 9.0.0 < 9.5.12
TYPO3 Arbitrary Code Execution and Cross-Site Scripting in Backend API	High		May 30, 2024	>= 8.0.0 < 8.7.27 >= 9.0.0 < 9.5.8
TYPO3 Broken Access Control in Import Module	Medium		May 30, 2024	>= 9.3.0 < 9.5.8
TYPO3 Security Misconfiguration in Frontend Session Handling	High		May 30, 2024	>= 8.0.0 < 8.7.27 >= 9.0.0 < 9.5.8
TYPO3 Information Disclosure in Backend User Interface	Medium		May 30, 2024	>= 8.0.0 < 8.7.27 >= 9.0.0 < 9.5.8
TYPO3 Information Disclosure in User Authentication	Medium		May 30, 2024	>= 9.0.0 < 9.5.6
TYPO3 Disclosure of Information about Installed Extensions	Medium		May 30, 2024	>= 8.0.0 < 8.7.23 >= 9.0.0 < 9.5.4
TYPO3 Information Disclosure in Page Tree	Medium		May 30, 2024	>= 9.0.0 < 9.5.6
TYPO3 Security Misconfiguration in User Session Handling	Medium		May 30, 2024	>= 8.0.0 < 8.7.25 >= 9.0.0 < 9.5.6