Vulnerabilities in TYPO3
142 resultsCVE-2022-31049MEDIUMCross-Site Scripting in Frontend Login MailerEPSS 0.7%CVE-2022-31048MEDIUMCross-Site Scripting in Form FrameworkEPSS 0.7%CVE-2020-11069HIGHCross-Site Request Forgery in TYPO3 CMSEPSS 0.7%CVE-2022-23500MEDIUMTYPO3 subject to Uncontrolled Recursion resulting in Denial of ServiceEPSS 0.7%CVE-2011-4632—Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary weEPSS 0.7%CVE-2011-4630—Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary weEPSS 0.7%CVE-2011-4629—Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary weEPSS 0.7%CVE-2011-4631—Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary weEPSS 0.7%CVE-2020-26228HIGHCleartext storage of session identifierEPSS 0.7%CVE-2023-47126LOWInformation Disclosure in Install Tool in typo3/cms-installEPSS 0.7%CVE-2020-26229LOWXML External Entity in Dashboard WidgetEPSS 0.6%CVE-2022-36020MEDIUMBypass of Cross-Site Scripting Protection in typo3/html-sanitizerEPSS 0.6%CVE-2021-41113HIGHCross-Site-Request-Forgery in Backend URI Handling in Typo3EPSS 0.6%CVE-2021-32667MEDIUMCross-Site Scripting in Page PreviewEPSS 0.6%CVE-2021-32669MEDIUMCross-Site Scripting in Backend Grid ViewEPSS 0.6%CVE-2021-32668MEDIUMCross-Site Scripting in Query Generator & Query ViewEPSS 0.6%CVE-2025-48200CRITICALThe sr_feuser_register extension through 12.4.8 for TYPO3 allows Remote Code Execution.EPSS 0.6%CVE-2024-34355LOWTYPO3 vulnerable to an HTML Injection in the History ModuleEPSS 0.6%CVE-2022-31046MEDIUMInformation Disclosure via Export Module in TYPO3 CMSEPSS 0.6%CVE-2023-47125MEDIUMBy-passing Cross-Site Scripting Protection in HTML SanitizerEPSS 0.6%