Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

TYPO3

TYPO3 is a free Open Source content management system for enterprise purposes on the web and in intranets. It offers full flexibility and extendability while featuring an accomplished set of ready-made interfaces functions and modules.

Official Site:

https://typo3.org/

Severity Summary:

Critical: 5 High: 33 Medium: 127 Low: 18
Reference
Title
Severity
CVE-2020-15241
TYPO3 URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2020-11065
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-11064
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-8091
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-12748
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2018-6905
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-6370
TYPO3 Cleartext Transmission of Sensitive Information Vulnerability
Medium
CVE-2016-4056
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-26227
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-4629
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-4904
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2011-4903
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-4902
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2011-4901
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-4900
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-4632
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-4631
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-4630
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8756
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8755
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-7077
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-7080
TYPO3 Vulnerability
Medium
CVE-2012-3531
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-1843
TYPO3 Resource Management Errors Vulnerability
Medium
CVE-2012-6144
TYPO3 Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2012-3527
TYPO3 Cryptographic Issues Vulnerability
Medium
CVE-2012-1608
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2012-1607
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2013-7076
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-7073
TYPO3 Permissions Privileges and Access Controls Vulnerability
Medium