Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

TYPO3

TYPO3 is a free Open Source content management system for enterprise purposes on the web and in intranets. It offers full flexibility and extendability while featuring an accomplished set of ready-made interfaces functions and modules.

Official Site:

https://typo3.org/

Severity Summary:

Critical: 5 High: 33 Medium: 127 Low: 18
Reference
Title
Severity
CVE-2011-3583
TYPO3 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2019-12747
TYPO3 Deserialization of Untrusted Data Vulnerability
Critical
CVE-2011-4628
TYPO3 Improper Authentication Vulnerability
Critical
CVE-2020-11066
TYPO3 Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability
Critical
CVE-2009-0258
TYPO3 Improper Input Validation Vulnerability
Critical
CVE-2022-31050
TYPO3 Insufficient Session Expiration Vulnerability
High
CVE-2021-41113
TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2010-3668
TYPO3 Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
High
CVE-2010-3663
TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2021-21339
TYPO3 Cleartext Storage of Sensitive Information Vulnerability
High
CVE-2021-21355
TYPO3 Files or Directories Accessible to External Parties Vulnerability
High
CVE-2021-21357
TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2021-21359
TYPO3 Uncontrolled Recursion Vulnerability
High
CVE-2020-15099
TYPO3 Improper Input Validation Vulnerability
High
CVE-2005-4875
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2022-36104
TYPO3 Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2006-6690
TYPO3 Other Vulnerability
High
CVE-2007-1081
TYPO3 Other Vulnerability
High
CVE-2009-0256
TYPO3 Improper Authentication Vulnerability
High
CVE-2009-3631
TYPO3 Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2009-4855
TYPO3 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2013-1842
TYPO3 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2010-3714
TYPO3 Permissions Privileges and Access Controls Vulnerability
High
CVE-2020-15098
TYPO3 Deserialization of Untrusted Data Vulnerability
High
CVE-2014-9509
TYPO3 Improper Input Validation Vulnerability
High
CVE-2010-3662
TYPO3 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2019-19848
TYPO3 Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2017-14251
TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2019-19849
TYPO3 Deserialization of Untrusted Data Vulnerability
High
CVE-2022-23500
TYPO3 Uncontrolled Recursion Vulnerability
High