Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / typo3

typo3

346 tracked vulnerabilities.

CVE-2022-23501 MEDIUM

TYPO3 < 8.7.49, 9.5.38, 10.4.33, 11.5.20, 12.1.1 - Improper Authentication via Username Ambiguity

CVE-2022-23500 MEDIUM

TYPO3 <9.5.38, 10.4.33, 11.5.20, 12.1.1 - DoS

CVE-2022-23499 MEDIUM

TYPO3 html_sanitizer < 1.5.0 and 2.0.0-2.0.10 - Cross-Site Scripting via CDATA Section Bypass

CVE-2022-36108 MEDIUM

TYPO3 10.0.0-10.4.31 - Cross-Site Scripting via f:asset.css View Helper

CVE-2022-36107 MEDIUM

TYPO3 7.0.0-7.6.57, 10.0.0-10.4.31 - Authenticated Cross-Site Scripting in FileDumpController

CVE-2022-36106 MEDIUM

TYPO3 <10.4.31, <11.5.15 - Info Disclosure

CVE-2022-36105 MEDIUM

TYPO3 7.0.0-7.6.57, 10.0.0-10.4.31 - User Enumeration via Authentication Timing Discrepancy

CVE-2022-36104 MEDIUM

TYPO3 CMS 11.4.0 through 11.5.15 - Denial of Service via Recursive Page Error Handler

CVE-2022-36020 MEDIUM

typo3/html-sanitizer < 1.0.7 - Cross-Site Scripting via HTML Comment Parsing Bypass

CVE-2022-31050 MEDIUM

TYPO3 <9.5.34 ELTS, <10.4.29, <11.5.11 - Info Disclosure

CVE-2022-31049 MEDIUM

TYPO3 <9.5.34 ELTS, <10.4.29, <11.5.11 - Info Disclosure

CVE-2022-31048 MEDIUM

TYPO3 <8.7.47 ELTS, <9.5.34 ELTS, <10.4.29, <11.5.11 - XSS

CVE-2022-31047 MEDIUM

TYPO3 <7.6.57 ELTS, <8.7.47 ELTS, <9.5.34 ELTS, <10.4.29, <11.5.11 ...

CVE-2022-31046 MEDIUM

TYPO3 <7.6.57 ELTS, <8.7.47 ELTS, <9.5.34 ELTS, <10.4.29, <11.5.11 ...

CVE-2021-41114 MEDIUM

TYPO3 11.0.0-11.5.0 - Host Header Spoofing via trustedHostsPattern Regression

CVE-2021-41113 HIGH

TYPO3 11.2.0-11.4.99 - Cross-Site Request Forgery via Deep Link Sharing

CVE-2021-32768 MEDIUM

TYPO3 7.0.0-7.6.52, 9.0.0-9.5.28, 10.0.0-10.4.19 - Cross-Site Scripting via Rich-Text Content Rendering

CVE-2021-32767 MEDIUM

TYPO3 <9.5.27, <10.4.17, <11.3.0 - Info Disclosure

CVE-2021-32669 MEDIUM

TYPO3 9.0.0-9.5.28 10.0.0-10.4.17 11.0.0-11.3.0 - Authenticated Stored Cross-Site Scripting in Backend Layout Grid View

CVE-2021-32668 MEDIUM

TYPO3 9.0.0-9.5.28, 10.0.0-10.4.17, 11.0.0-11.3.0 - Authenticated XSS in QueryGenerator and QueryView

CVE-2021-32667 MEDIUM

TYPO3 9.0.0-9.5.28, 10.0.0-10.4.17, 11.0.0-11.3.0 - Authenticated Stored Cross-Site Scripting in Page TSconfig

CVE-2021-21365 MEDIUM

Typo3 < 7.1.2 - XSS

CVE-2021-21370 MEDIUM

TYPO3 < 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 - Authenticated Cross-Site Scripting in Menu Content Element Preview

CVE-2021-21359 MEDIUM

TYPO3 <9.5.25, 10.4.14, 11.1.1 - DoS

CVE-2021-21358 MEDIUM

TYPO3 < 10.4.14 - Authenticated Stored Cross-Site Scripting in Form Designer Module

Previous Page 4 of 14 Next

Products

typo3 218 cms 116 cms-core 85 cms-backend 22 cms-install 6 cms-form 4 cms-frontend 4 dam_frontend_extension 4 html-sanitizer 4 html_sanitizer 4 wec_discussion_forum 4 Extension "Faceted Search" 3 pdf_generator_2_extension 3 Extension "Mailqueue" 2 address_directory 2 air_filemanager 2 beuserswitch 2 cms-beuser 2 cms-dashboard 2 cms-recycler 2 cms-workspaces 2 commerce_extension 2 eluna_page_comments_extension 2 ns backup extension 2 phar-stream-wrapper 2 pharstreamwrapper 2 sql_frontend_extension 2 sr feuser register extension 2 sr_feuser_register_extension 2 terminal 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy