Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

TYPO3

TYPO3 is a free Open Source content management system for enterprise purposes on the web and in intranets. It offers full flexibility and extendability while featuring an accomplished set of ready-made interfaces functions and modules.

Official Site:

https://typo3.org/

Severity Summary:

Critical: 5 High: 33 Medium: 127 Low: 18
Reference
Title
Severity
CVE-2010-0286
TYPO3 Vulnerability
Medium
CVE-2009-3636
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-2717
TYPO3 Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2009-3634
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-5644
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-23501
TYPO3 Improper Authentication Vulnerability
Medium
CVE-2008-2718
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-32667
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-23502
TYPO3 Insufficient Session Expiration Vulnerability
Medium
CVE-2022-36105
TYPO3 Observable Discrepancy Vulnerability
Medium
CVE-2022-36107
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-36108
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-36106
TYPO3 Improper Authentication Vulnerability
Medium
CVE-2022-31048
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-31049
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-31046
TYPO3 Cleartext Transmission of Sensitive Information Vulnerability
Medium
CVE-2022-31047
TYPO3 Insertion of Sensitive Information into Log File Vulnerability
Medium
CVE-2022-23504
TYPO3 Improper Neutralization of Special Elements used in an Expression Language Statement (Expression La Vulnerability
Medium
CVE-2021-41114
TYPO3 Improper Neutralization of HTTP Headers for Scripting Syntax Vulnerability
Medium
CVE-2021-32768
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-38499
TYPO3 Vulnerability
Medium
CVE-2021-32668
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-6381
TYPO3 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2021-32669
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-32767
TYPO3 Insertion of Sensitive Information into Log File Vulnerability
Medium
CVE-2023-47127
TYPO3 Improper Authentication Vulnerability
Medium
CVE-2010-5104
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2021-21365
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-21338
TYPO3 URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2021-21340
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium