| Title |
Severity |
Exploit |
Date |
Affected Version |
|
TYPO3 Cross-Site Scripting in Online Media Asset Rendering
|
Medium
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.21
>= 9.0.0 < 9.5.2
|
|
TYPO3 CMS Privilege Escalation and SQL Injection
|
High
|
|
May 30, 2024
|
>= 8.5.0 < 8.7.17
>= 9.0.0 < 9.3.2
|
|
TYPO3 CMS Insecure Deserialization & Arbitrary Code Execution
|
Critical
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.17
>= 9.0.0 < 9.3.2
>= 7.0.0 < 7.6.30
|
|
TYPO3 CMS Authentication Bypass vulnerability
|
High
|
|
May 30, 2024
|
>= 8.0.0 < 8.7.17
>= 9.0.0 < 9.3.2
>= 7.0.0 < 7.6.30
|
|
CVE-2024-34358
|
Medium
|
|
May 14, 2024
|
>= 9.0.0 < 9.5.48
>= 10.0.0 < 10.4.45
>= 11.0.0 < 11.5.37
>= 12.0.0 < 12.4.15
>= 13.0.0 < 13.1.1
|
|
CVE-2024-34357
|
Medium
|
|
May 14, 2024
|
>= 9.0.0 < 9.5.48
>= 10.0.0 < 10.4.45
>= 11.0.0 < 11.5.37
>= 12.0.0 < 12.4.15
>= 13.0.0 < 13.1.1
|
|
CVE-2024-34356
|
Medium
|
|
May 14, 2024
|
>= 9.0.0 < 9.5.48
>= 10.0.0 < 10.4.45
>= 11.0.0 < 11.5.37
>= 12.0.0 < 12.4.15
>= 13.0.0 < 13.1.1
|
|
CVE-2024-34355
|
Medium
|
|
May 14, 2024
|
>= 13.0.0 < 13.1.1
|
|
CVE-2024-22188
|
High
|
|
Mar 5, 2024
|
>= 8.0.0 < 8.7.57
>= 9.0.0 < 9.5.46
>= 10.0.0 < 10.4.43
>= 11.0.0 < 11.5.35
>= 12.0.0 < 12.4.11
== 13.0.0
>= 13.0.0 < 13.0.1
|
|
CVE-2024-25118
|
Medium
|
|
Feb 14, 2024
|
>= 8.0.0 < 8.7.57
>= 9.0.0 < 9.5.46
>= 10.0.0 < 10.4.43
>= 11.0.0 < 11.5.35
>= 12.0.0 < 12.4.11
== 13.0.0
>= 13.0.0 < 13.0.1
|
typo3 / cms-core