typo3/cms Security Advisories for 6.2.26 (7)
-
[MEDIUM] Typo3 Cross-Site Scripting in Flash component (ELTS)
PKSA-76yg-j1z3-zysm CVE-2020-8091 GHSA-qvhv-pwww-53jj
Affected version: >=7.0.0,<=7.1.0|>=6.2.0,<=6.2.38
Reported by:
GitHub -
[MEDIUM] Typo3 XSS Vulnerability
PKSA-j487-wgb6-g37w CVE-2018-6905 GHSA-3w22-wrwx-2r75
Affected version: <9.2.0
Reported by:
GitHub -
[MEDIUM] Remote Code Execution in third party library swiftmailer
PKSA-y99p-vnsv-h8zb GHSA-85ch-44w7-rf32
Affected version: >=6.2.0,<6.2.30|>=7.6.0,<7.6.15|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.4.0|>=8.4.0,<8.5.0|>=8.5.0,<8.5.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Insecure Unserialize in TYPO3 Backend
PKSA-p9pn-ckkr-j9gj GHSA-vgm8-r9gm-fw59
Affected version: >=6.2.0,<6.2.29|>=7.6.0,<7.6.13|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.4.0|>=8.4.0,<8.4.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Path Traversal in TYPO3 Core
PKSA-ycv6-vk58-crph GHSA-g7hw-jh4p-75wr
Affected version: >=6.2.0,<6.2.29|>=7.6.0,<7.6.13|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.4.0|>=8.4.0,<8.4.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Cache Flooding in TYPO3 Frontend
PKSA-5nxh-6dvz-pwx2 GHSA-8h28-f46f-m87h
Affected version: >=6.2.0,<6.2.27|>=7.6.0,<7.6.11|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.3.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Cross-Site Scripting in TYPO3 Backend
PKSA-p1xw-bm9t-9mgz GHSA-pw2q-qwvj-gh43
Affected version: >=6.2.0,<6.2.27|>=7.6.0,<7.6.11|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.3.1
Reported by:
GitHub, FriendsOfPHP/security-advisories