[MEDIUM] Insecure Deserialization & Arbitrary Code Execution in TYPO3 CMS

PKSA-53xp-pxrc-sbvb GHSA-wvvp-jwf5-qcpc

Affected package: typo3/cms-core

Affected version: >=8.0.0,<8.7.17|>=9.0.0,<9.3.2

Reported by:
GitHub, FriendsOfPHP/security-advisories