Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

TYPO3

TYPO3 is a free Open Source content management system for enterprise purposes on the web and in intranets. It offers full flexibility and extendability while featuring an accomplished set of ready-made interfaces functions and modules.

Official Site:

https://typo3.org/

Severity Summary:

Critical: 5 High: 33 Medium: 127 Low: 18
Reference
Title
Severity
CVE-2013-7075
TYPO3 Cryptographic Issues Vulnerability
Medium
CVE-2013-7079
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2013-7081
TYPO3 Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-6146
TYPO3 Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2014-3944
TYPO3 Improper Authentication Vulnerability
Medium
CVE-2012-1605
TYPO3 Other Vulnerability
Medium
CVE-2014-9508
TYPO3 Improper Link Resolution Before File Access (Link Following) Vulnerability
Medium
CVE-2014-3946
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2014-3945
TYPO3 Improper Authentication Vulnerability
Medium
CVE-2014-3942
TYPO3 Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2014-3941
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2013-4321
TYPO3 Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2013-4320
TYPO3 Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2013-4250
TYPO3 Improper Input Validation Vulnerability
Medium
CVE-2012-3530
TYPO3 Other Vulnerability
Medium
CVE-2010-5098
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2020-11063
TYPO3 Observable Differences in Behavior to Error Inputs Vulnerability
Low
CVE-2010-5097
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-1606
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2010-5100
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2020-26229
TYPO3 Improper Restriction of XML External Entity Reference Vulnerability
Low
CVE-2015-5956
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-3529
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2012-6145
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-6147
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-6148
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2013-7074
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2015-2047
TYPO3 Improper Authentication Vulnerability
Low
CVE-2009-3629
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2013-7078
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low