Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

CMS

TYPO3

TYPO3 is a free Open Source content management system for enterprise purposes on the web and in intranets. It offers full flexibility and extendability while featuring an accomplished set of ready-made interfaces functions and modules.

Official Site:

https://typo3.org/

Severity Summary:

Critical: 5 High: 41 Medium: 151 Low: 20
Reference
Title
Severity
CVE-2010-3669
TYPO3 URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2010-3667
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2010-3666
TYPO3 Use of Insufficiently Random Values Vulnerability
Medium
CVE-2010-3665
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-3664
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2010-3661
TYPO3 URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2010-3660
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8760
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2010-3672
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8759
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8758
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8757
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8756
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8755
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2014-9508
TYPO3 Improper Link Resolution Before File Access (Link Following) Vulnerability
Medium
CVE-2014-3946
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2014-3945
TYPO3 Improper Authentication Vulnerability
Medium
CVE-2009-3635
TYPO3 Improper Authentication Vulnerability
Medium
CVE-2010-3671
TYPO3 Session Fixation Vulnerability
Medium
CVE-2010-3673
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2014-3941
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2011-4904
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2020-11065
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-11064
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-8091
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-12748
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-6905
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-6370
TYPO3 Cleartext Transmission of Sensitive Information Vulnerability
Medium
CVE-2016-4056
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-15241
TYPO3 URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium