Typo3

321 tracked vulnerabilities.

CVE-2026-0859 HIGH
Typo3 < 10.4.55 - Insecure Deserialization
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-59022 HIGH
Typo3 < 10.4.55 - Missing Authorization
Jan 13, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-59021 MEDIUM
Typo3 < 10.4.55 - Missing Authorization
Jan 13, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-59020 MEDIUM
Typo3 < 10.4.55 - Incorrect Authorization
Jan 13, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-59019 MEDIUM
Typo3 < 11.5.48 - Information Disclosure
Sep 09, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-59018 MEDIUM
Typo3 < 9.5.55 - Information Disclosure
Sep 09, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-59017 HIGH
Typo3 < 9.5.55 - Missing Authorization
Sep 09, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-59016 MEDIUM
Typo3 < 9.5.55 - Error Information Exposure
Sep 09, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-59015 MEDIUM
TYPO3 CMS <13.4.17 - Info Disclosure
Sep 09, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-59014 LOW
TYPO3 CMS <13.4.17 - DoS
Sep 09, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-59013 MEDIUM
Typo3 < 9.5.55 - Open Redirect
Sep 09, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-7900 MEDIUM
TYPO3 femanager <6.4.1, 7.0.0-7.5.2, 8.0.0-8.3.0 - Info Disclosure
Jul 22, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-47941 HIGH
TYPO3 <12.4.31 LTS & <13.4.2 LTS - Auth Bypass
May 20, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-47940 HIGH
TYPO3 <10.4.50 ELTS, <11.5.44 ELTS, <12.4.31 LTS, <13.4.12 LTS - Pr...
May 20, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-47939 MEDIUM
Typo3 < 9.5.51 - Unrestricted File Upload
May 20, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-47938 LOW
TYPO3 <9.5.51 ELTS, 10.4.50 ELTS, 11.5.44 ELTS, 12.4.31 LTS, 13.4.1...
May 20, 2025
CVSS 3.8
EPSS 0.00
CVE-2025-47937 LOW
Typo3 < 9.5.51 - Incorrect Authorization
May 20, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-47936 LOW
Typo3 < 12.4.31 - SSRF
May 20, 2025
CVSS 3.3
EPSS 0.00
CVE-2024-55945 MEDIUM
Typo3 < 11.5.42 - CSRF
Jan 14, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-55924 HIGH
Typo3 < 11.5.42 - CSRF
Jan 14, 2025
CVSS 8.0
EPSS 0.01
CVE-2024-55923 MEDIUM
Typo3 < 10.4.48 - CSRF
Jan 14, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-55922 MEDIUM
Typo3 < 10.4.48 - CSRF
Jan 14, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-55921 HIGH
Typo3 < 10.4.48 - Remote Code Execution
Jan 14, 2025
CVSS 7.5
EPSS 0.03
CVE-2024-55920 MEDIUM
Typo3 < 10.4.48 - CSRF
Jan 14, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-55894 MEDIUM
Typo3 < 10.4.48 - CSRF
Jan 14, 2025
CVSS 4.3
EPSS 0.00
Products
typo3 217 cms 116 cms-core 85 cms-backend 21 cms-install 6 wec_discussion_forum 4 html-sanitizer 4 dam_frontend_extension 4 cms-form 4 html_sanitizer 4 cms-frontend 4 pdf_generator_2_extension 3 cms-recycler 2 wir_ber_uns_extension 2 terminal 2 pharstreamwrapper 2 toi_category 2 ws_ecard 2 address_directory 2 commerce_extension 2 air_filemanager 2 beuserswitch 2 cms-dashboard 2 cms-workspaces 2 sql_frontend_extension 2 sr_feuser_register_extension 2 eluna_page_comments_extension 2 cms-beuser 2 phar-stream-wrapper 2 wt_gallery 2
Quick Filters
Critical CVEs With Exploits In CISA KEV