Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / typo3

typo3

346 tracked vulnerabilities.

CVE-2025-59013 MEDIUM

TYPO3 CMS Open Redirect via GeneralUtility::sanitizeLocalUrl

CVE-2025-9573 HIGH

TYPO3 ns_backup <13.0.2 - Command Injection

CVE-2025-7900 MEDIUM

TYPO3 femanager <6.4.1, 7.0.0-7.5.2, 8.0.0-8.3.0 - Info Disclosure

CVE-2025-7899 MEDIUM

Powermail <13.0.0 - Info Disclosure

CVE-2025-48207 HIGH

TYPO3 reint_downloadmanager <5.0.0 - Info Disclosure

CVE-2025-48205 HIGH

TYPO3 sr_feuser_register <12.4.8 - Info Disclosure

CVE-2025-48204 MEDIUM

ns_backup < 13.0.1 - OS Command Injection

CVE-2025-48203 MEDIUM

cs_seo 6.3.0-6.7.9, 7.0.0-7.4.9, 8.0.0-8.3.9, 9.0.0-9.2.0 - Cross-Site Scripting

CVE-2025-48202 MEDIUM

TYPO3 femanager <8.2.1 - Info Disclosure

CVE-2025-48201 HIGH

TYPO3 ns_backup <13.0.0 - Info Disclosure

CVE-2025-48200 CRITICAL

sr_feuser_register 5.1.0-12.4.8 - Remote Code Execution via Untrusted Data Deserialization

CVE-2025-47941 HIGH

TYPO3 <12.4.31 LTS & <13.4.2 LTS - Auth Bypass

CVE-2025-47940 HIGH

TYPO3 <10.4.50 ELTS, <11.5.44 ELTS, <12.4.31 LTS, <13.4.12 LTS - Pr...

CVE-2025-47939 MEDIUM

TYPO3 9.0.0-9.5.50 - Unrestricted Upload of File with Dangerous Type in File Management Module

CVE-2025-47938 LOW

TYPO3 <9.5.51 ELTS, 10.4.50 ELTS, 11.5.44 ELTS, 12.4.31 LTS, 13.4.1...

CVE-2025-47937 LOW

TYPO3 9.0.0-9.5.50 - Incorrect Authorization in Database Abstraction Layer

CVE-2025-47936 LOW

TYPO3 12.0.0-12.4.30 and 13.0.0-13.4.1 - Authenticated Server-Side Request Forgery via Webhooks

CVE-2025-24856 MEDIUM

TYPO3 oidc <4.0.0 - Privilege Escalation

CVE-2024-55945 MEDIUM

TYPO3 11.0.0-11.5.41 - Cross-Site Request Forgery via Backend Deep Links

CVE-2024-55924 HIGH

TYPO3 11.0.0-11.5.41 - Cross-Site Request Forgery via Backend Deep Links

CVE-2024-55923 MEDIUM

TYPO3 10.0.0-10.4.48 - Cross-Site Request Forgery via Backend Deep Links

CVE-2024-55922 MEDIUM

TYPO3 10.0.0-10.4.47 - Cross-Site Request Forgery via Backend Deep Links

CVE-2024-55921 HIGH

TYPO3 10.0.0-10.4.48 - Cross-Site Request Forgery and Remote Code Execution via Extension Manager Module

CVE-2024-55920 MEDIUM

TYPO3 10.0.0-10.4.48 - Cross-Site Request Forgery via Backend Deep Links

CVE-2024-55894 MEDIUM

TYPO3 10.0.0-10.4.47 - Cross-Site Request Forgery via Backend Deep Links

Previous Page 2 of 14 Next

Products

typo3 218 cms 116 cms-core 85 cms-backend 22 cms-install 6 cms-form 4 cms-frontend 4 dam_frontend_extension 4 html-sanitizer 4 html_sanitizer 4 wec_discussion_forum 4 Extension "Faceted Search" 3 pdf_generator_2_extension 3 Extension "Mailqueue" 2 address_directory 2 air_filemanager 2 beuserswitch 2 cms-beuser 2 cms-dashboard 2 cms-recycler 2 cms-workspaces 2 commerce_extension 2 eluna_page_comments_extension 2 ns backup extension 2 phar-stream-wrapper 2 pharstreamwrapper 2 sql_frontend_extension 2 sr feuser register extension 2 sr_feuser_register_extension 2 terminal 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy