| Title |
Severity |
Exploit |
Date |
Affected Version |
|
TYPO3 Broken Access Control in Localization Handling
|
Medium
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.23
|
|
TYPO3 Cross-Site Scripting in Fluid ViewHelpers
|
Medium
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.23
>= 9.0.0 < 9.5.4
|
|
TYPO3 Security Misconfiguration for Backend User Accounts
|
High
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.23
>= 9.0.0 < 9.5.4
|
|
TYPO3 Denial of Service in Frontend Record Registration
|
High
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.21
>= 7.0.0 < 7.6.32
|
|
TYPO3 Denial of Service in Online Media Asset Handling
|
Medium
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.21
>= 9.0.0 < 9.5.2
>= 7.0.0 < 7.6.32
|
|
TYPO3 Information Disclosure in Install Tool
|
Medium
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.21
>= 9.0.0 < 9.5.2
>= 7.0.0 < 7.6.32
|
|
TYPO3 Security Misconfiguration in Install Tool Cookie
|
High
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.21
>= 9.0.0 < 9.5.2
>= 7.0.0 < 7.6.32
|
|
TYPO3 Cross-Site Scripting in Frontend User Login
|
Medium
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.21
>= 9.0.0 < 9.5.2
>= 7.1.0 < 7.6.32
|
|
TYPO3 Cross-Site Scripting in Backend Modal Component
|
Medium
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.21
>= 9.0.0 < 9.5.2
>= 7.1.0 < 7.6.32
|
|
TYPO3 CMS Insecure Deserialization
|
High
|
|
May 30, 2024
|
>= 8.5.0 < 8.7.17
>= 9.0.0 < 9.3.1
|
typo3 / cms-core