typo3 Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by typo3
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Remote Code Execution in sr_feuser_register Extension for TYPO3
CVE-2025-48200Typo3Sr Feuser Register Ext...10CRITICALPredictable Resource Location Vulnerability in TYPO3 ns_backup Extension
CVE-2025-48201Typo3Ns Backup Extension8.6HIGHInsecure Direct Object Reference Vulnerability in TYPO3 sr_feuser_register Extension
CVE-2025-48205Typo3Sr Feuser Register Ext...8.6HIGHInsecure Direct Object Reference in reint_downloadmanager Extension for TYPO3
CVE-2025-48207Typo3Reint Downloadmanager ...8.6HIGHBypass of Multifactor Authentication in TYPO3 CMS by TYPO3 Association
CVE-2025-47941Typo3Typo37.2HIGHPrivilege Escalation Vulnerability in TYPO3 Open Source CMS
CVE-2025-47940Typo3Typo37.2HIGHCross-Site Request Forgery Vulnerability in TYPO3 Backend User Interface
CVE-2024-55921Typo3Typo37.5HIGHCross-Site Request Forgery in TYPO3 Content Management Framework Backend
CVE-2024-55924Typo3Typo38HIGHFallback Storage Vulnerability in TYPO3 Allows File Name and Content Retrieval
CVE-2024-25121Typo3Typo37.1HIGHPersisted Cross-Site Scripting in Frontend Rendering in typo3
CVE-2023-24814Typo3Typo38.8HIGHTYPO3 vulnerable to Arbitrary Code Execution via Form Framework
CVE-2022-23503Typo3Typo37.5HIGHCross-Site-Request-Forgery in Backend URI Handling in Typo3
CVE-2021-41113Typo3Typo38.8HIGHUnrestricted File Upload in Form Framework
CVE-2021-21355Typo3Typo3.cms8.6HIGHBroken Access Control in Form Framework
CVE-2021-21357Typo3Typo3.cms8.3HIGHCleartext storage of session identifier
CVE-2020-26228Typo3Typo3.cms8.1HIGHCross-Site Scripting in TYPO3 Fluid
CVE-2020-26216Typo3Fluid8HIGHMissing Required Cryptographic Step Leading to Sensitive Information Disclosure in TYPO3 CMS
CVE-2020-15098Typo3Typo3 Cms8.8HIGHExposure of Sensitive Information to an Unauthorized Actor in TYPO3 CMS
CVE-2020-15099Typo3Typo3 Cms8.1HIGHImproperly Controlled Modification of Dynamically-Determined Object Attributes in TYPO3 CMS
CVE-2020-11066Typo3Typo3 Cms8.7HIGHDeserialization of Untrusted Data in TYPO3 CMS
CVE-2020-11067Typo3Typo3 Cms8.8HIGHCross-Site Request Forgery in TYPO3 CMS
CVE-2020-11069Typo3Typo3 Cms8HIGHInsecure Deserialization Vulnerability in TYPO3 by TYPO3 CMS
CVE-2019-19849Typo3Typo38.8HIGHSQL Injection Vulnerability in Typo3 Core by TYPO3 Association
CVE-2011-3583TYPO3 CoreTYPO3 Core9.8CRITICALSQL Injection Vulnerability in TYPO3 Core wec_discussion Extension
CVE-2011-3584TYPO3 Corewec_discussion9.8CRITICALAuthentication Bypass Vulnerability in TYPO3 by TYPO3 Association
CVE-2011-4628Typo3Typo39.8CRITICAL