Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/typo3/cms@8.7.23
Typecomposer
Namespacetypo3
Namecms
Version8.7.23
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version10.4.35
Latest_non_vulnerable_version12.2.0
Affected_by_vulnerabilities
0
url VCID-1tdx-n6at-xfdb
vulnerability_id VCID-1tdx-n6at-xfdb
summary TYPO3 Cross-Site Scripting in Filelist Module
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-3.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-3.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/044d7dbe28382919c765b6b815d420f480a1ac70
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/044d7dbe28382919c765b6b815d420f480a1ac70
3
reference_url https://github.com/TYPO3/typo3/commit/96b122b756cc778697845d48210b0993c0724b5f
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/96b122b756cc778697845d48210b0993c0724b5f
4
reference_url https://github.com/TYPO3/typo3/commit/fcc1bab07027ba9d8140a91006d3cda1244d6298
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/fcc1bab07027ba9d8140a91006d3cda1244d6298
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-023
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-023
6
reference_url https://github.com/advisories/GHSA-g7hw-jh4p-75wr
reference_id GHSA-g7hw-jh4p-75wr
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-g7hw-jh4p-75wr
fixed_packages
0
url pkg:composer/typo3/cms@8.7.30
purl pkg:composer/typo3/cms@8.7.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-9guq-muyz-uke8
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-wmvt-9z94-qkak
15
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30
1
url pkg:composer/typo3/cms@9.5.12
purl pkg:composer/typo3/cms@9.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-7b93-yrbc-pudn
3
vulnerability VCID-8rgn-8qf5-ckf9
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-abwf-mjxx-xka8
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-dehe-pf1a-4ugh
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-gpfs-y5yk-8fad
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-jzk1-rp1c-yfc9
13
vulnerability VCID-k2ma-t35n-abha
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-ps8b-6s4z-57fx
16
vulnerability VCID-s8vm-j73f-d7g5
17
vulnerability VCID-swkc-45zu-jfce
18
vulnerability VCID-tnkm-6p9x-fuaa
19
vulnerability VCID-tyba-yxs8-7kgb
20
vulnerability VCID-ut55-j7gh-3bgt
21
vulnerability VCID-v9eq-8h8q-f7gb
22
vulnerability VCID-vcbt-ta48-vybq
23
vulnerability VCID-vm94-wdga-rqdc
24
vulnerability VCID-wmvt-9z94-qkak
25
vulnerability VCID-xc11-sr2y-m3dj
26
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12
2
url pkg:composer/typo3/cms@10.2.1
purl pkg:composer/typo3/cms@10.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-4ntq-jdtt-7fad
3
vulnerability VCID-4xzz-vmc7-juh8
4
vulnerability VCID-5ddb-qvu6-c7dd
5
vulnerability VCID-66qa-16we-wkdw
6
vulnerability VCID-6g94-zrcc-mqf2
7
vulnerability VCID-7b93-yrbc-pudn
8
vulnerability VCID-8rgn-8qf5-ckf9
9
vulnerability VCID-91ky-rf6s-mudv
10
vulnerability VCID-9ce2-hvqa-97c5
11
vulnerability VCID-9guq-muyz-uke8
12
vulnerability VCID-9kzb-yw93-rqd3
13
vulnerability VCID-abwf-mjxx-xka8
14
vulnerability VCID-cmzk-5bm5-hbep
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-fajx-7vk2-yfd4
18
vulnerability VCID-gpfs-y5yk-8fad
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-jzk1-rp1c-yfc9
21
vulnerability VCID-k2ma-t35n-abha
22
vulnerability VCID-p2gb-esw8-3ya7
23
vulnerability VCID-ps8b-6s4z-57fx
24
vulnerability VCID-rmxx-e239-5uf8
25
vulnerability VCID-rtza-c724-4kfr
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-swkc-45zu-jfce
28
vulnerability VCID-tnkm-6p9x-fuaa
29
vulnerability VCID-tyba-yxs8-7kgb
30
vulnerability VCID-uspd-tbez-gbht
31
vulnerability VCID-ut55-j7gh-3bgt
32
vulnerability VCID-v1kq-a6wk-bka9
33
vulnerability VCID-v6tr-29p5-tyaa
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-vm94-wdga-rqdc
37
vulnerability VCID-wmvt-9z94-qkak
38
vulnerability VCID-ws7p-gwph-4khc
39
vulnerability VCID-xc11-sr2y-m3dj
40
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1
aliases GHSA-g7hw-jh4p-75wr
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1tdx-n6at-xfdb
1
url VCID-1wqd-w75h-rbb1
vulnerability_id VCID-1wqd-w75h-rbb1
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-26227
reference_id
reference_type
scores
0
value 0.00359
scoring_system epss
scoring_elements 0.58497
published_at 2026-06-11T12:55:00Z
1
value 0.00359
scoring_system epss
scoring_elements 0.58608
published_at 2026-06-12T12:55:00Z
2
value 0.00359
scoring_system epss
scoring_elements 0.58624
published_at 2026-06-13T12:55:00Z
3
value 0.00359
scoring_system epss
scoring_elements 0.58613
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-26227
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2020-26227.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2020-26227.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2020-26227.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2020-26227.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-vqqx-jw6p-q3rf
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-vqqx-jw6p-q3rf
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-26227
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-26227
5
reference_url https://packagist.org/packages/typo3/cms-core
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-core
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2020-010
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2020-010
7
reference_url https://github.com/advisories/GHSA-vqqx-jw6p-q3rf
reference_id GHSA-vqqx-jw6p-q3rf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vqqx-jw6p-q3rf
fixed_packages
0
url pkg:composer/typo3/cms@8.7.38
purl pkg:composer/typo3/cms@8.7.38
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.38
1
url pkg:composer/typo3/cms@9.5.23
purl pkg:composer/typo3/cms@9.5.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29c2-3qgd-tydb
1
vulnerability VCID-9guq-muyz-uke8
2
vulnerability VCID-9kzb-yw93-rqd3
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-vm94-wdga-rqdc
15
vulnerability VCID-wmvt-9z94-qkak
16
vulnerability VCID-xc11-sr2y-m3dj
17
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.23
2
url pkg:composer/typo3/cms@10.4.10
purl pkg:composer/typo3/cms@10.4.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29c2-3qgd-tydb
1
vulnerability VCID-4ntq-jdtt-7fad
2
vulnerability VCID-4xzz-vmc7-juh8
3
vulnerability VCID-5ddb-qvu6-c7dd
4
vulnerability VCID-66qa-16we-wkdw
5
vulnerability VCID-6g94-zrcc-mqf2
6
vulnerability VCID-91ky-rf6s-mudv
7
vulnerability VCID-9ce2-hvqa-97c5
8
vulnerability VCID-9guq-muyz-uke8
9
vulnerability VCID-9kzb-yw93-rqd3
10
vulnerability VCID-cmzk-5bm5-hbep
11
vulnerability VCID-d7rj-6q7r-dug5
12
vulnerability VCID-dehe-pf1a-4ugh
13
vulnerability VCID-fajx-7vk2-yfd4
14
vulnerability VCID-humm-nga7-hbe4
15
vulnerability VCID-k2ma-t35n-abha
16
vulnerability VCID-p2gb-esw8-3ya7
17
vulnerability VCID-rmxx-e239-5uf8
18
vulnerability VCID-s8vm-j73f-d7g5
19
vulnerability VCID-tnkm-6p9x-fuaa
20
vulnerability VCID-tyba-yxs8-7kgb
21
vulnerability VCID-uspd-tbez-gbht
22
vulnerability VCID-v1kq-a6wk-bka9
23
vulnerability VCID-v9eq-8h8q-f7gb
24
vulnerability VCID-vcbt-ta48-vybq
25
vulnerability VCID-vm94-wdga-rqdc
26
vulnerability VCID-wmvt-9z94-qkak
27
vulnerability VCID-ws7p-gwph-4khc
28
vulnerability VCID-xc11-sr2y-m3dj
29
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.10
aliases CVE-2020-26227, GHSA-vqqx-jw6p-q3rf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1wqd-w75h-rbb1
2
url VCID-29c2-3qgd-tydb
vulnerability_id VCID-29c2-3qgd-tydb
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-21339
reference_id
reference_type
scores
0
value 0.00132
scoring_system epss
scoring_elements 0.32261
published_at 2026-06-11T12:55:00Z
1
value 0.00132
scoring_system epss
scoring_elements 0.32444
published_at 2026-06-12T12:55:00Z
2
value 0.00132
scoring_system epss
scoring_elements 0.32463
published_at 2026-06-13T12:55:00Z
3
value 0.00132
scoring_system epss
scoring_elements 0.32441
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-21339
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21339.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21339.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21339.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21339.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-qx3w-4864-94ch
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-qx3w-4864-94ch
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-21339
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-21339
5
reference_url https://packagist.org/packages/typo3/cms-core
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-core
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-006
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-006
7
reference_url https://github.com/advisories/GHSA-qx3w-4864-94ch
reference_id GHSA-qx3w-4864-94ch
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qx3w-4864-94ch
fixed_packages
0
url pkg:composer/typo3/cms@8.7.40
purl pkg:composer/typo3/cms@8.7.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dehe-pf1a-4ugh
1
vulnerability VCID-tnkm-6p9x-fuaa
2
vulnerability VCID-v9eq-8h8q-f7gb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.40
1
url pkg:composer/typo3/cms@9.5.25
purl pkg:composer/typo3/cms@9.5.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tnkm-6p9x-fuaa
8
vulnerability VCID-tyba-yxs8-7kgb
9
vulnerability VCID-v9eq-8h8q-f7gb
10
vulnerability VCID-vcbt-ta48-vybq
11
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.25
2
url pkg:composer/typo3/cms@10.4.14
purl pkg:composer/typo3/cms@10.4.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-dehe-pf1a-4ugh
10
vulnerability VCID-fajx-7vk2-yfd4
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-p2gb-esw8-3ya7
13
vulnerability VCID-rmxx-e239-5uf8
14
vulnerability VCID-tnkm-6p9x-fuaa
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-v9eq-8h8q-f7gb
19
vulnerability VCID-vcbt-ta48-vybq
20
vulnerability VCID-ws7p-gwph-4khc
21
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14
3
url pkg:composer/typo3/cms@11.1.1
purl pkg:composer/typo3/cms@11.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-cmzk-5bm5-hbep
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tnkm-6p9x-fuaa
16
vulnerability VCID-tyba-yxs8-7kgb
17
vulnerability VCID-uspd-tbez-gbht
18
vulnerability VCID-v1kq-a6wk-bka9
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-ws7p-gwph-4khc
22
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1
aliases CVE-2021-21339, GHSA-qx3w-4864-94ch
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-29c2-3qgd-tydb
3
url VCID-32rm-6wes-2ydx
vulnerability_id VCID-32rm-6wes-2ydx
summary Typo3 Security Misconfiguration in Frontend Session Handling
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-06-25-3.yaml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-06-25-3.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-018
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-018
3
reference_url https://github.com/advisories/GHSA-qr5f-6fcv-w69q
reference_id GHSA-qr5f-6fcv-w69q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qr5f-6fcv-w69q
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GHSA-qr5f-6fcv-w69q
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-32rm-6wes-2ydx
4
url VCID-3qs5-756e-1kdk
vulnerability_id VCID-3qs5-756e-1kdk
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-19848
reference_id
reference_type
scores
0
value 0.00374
scoring_system epss
scoring_elements 0.59506
published_at 2026-06-11T12:55:00Z
1
value 0.00374
scoring_system epss
scoring_elements 0.59616
published_at 2026-06-12T12:55:00Z
2
value 0.00374
scoring_system epss
scoring_elements 0.59627
published_at 2026-06-13T12:55:00Z
3
value 0.00374
scoring_system epss
scoring_elements 0.59617
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-19848
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19848.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19848.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19848.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19848.yaml
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-19848
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-19848
4
reference_url https://review.typo3.org/q/%2522Resolves:+%252388764%2522+topic:security
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://review.typo3.org/q/%2522Resolves:+%252388764%2522+topic:security
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-024
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-024
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-024/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-024/
7
reference_url https://github.com/advisories/GHSA-77p4-wfr8-977w
reference_id GHSA-77p4-wfr8-977w
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-77p4-wfr8-977w
fixed_packages
0
url pkg:composer/typo3/cms@8.7.30
purl pkg:composer/typo3/cms@8.7.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-9guq-muyz-uke8
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-wmvt-9z94-qkak
15
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30
1
url pkg:composer/typo3/cms@9.5.12
purl pkg:composer/typo3/cms@9.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-7b93-yrbc-pudn
3
vulnerability VCID-8rgn-8qf5-ckf9
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-abwf-mjxx-xka8
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-dehe-pf1a-4ugh
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-gpfs-y5yk-8fad
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-jzk1-rp1c-yfc9
13
vulnerability VCID-k2ma-t35n-abha
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-ps8b-6s4z-57fx
16
vulnerability VCID-s8vm-j73f-d7g5
17
vulnerability VCID-swkc-45zu-jfce
18
vulnerability VCID-tnkm-6p9x-fuaa
19
vulnerability VCID-tyba-yxs8-7kgb
20
vulnerability VCID-ut55-j7gh-3bgt
21
vulnerability VCID-v9eq-8h8q-f7gb
22
vulnerability VCID-vcbt-ta48-vybq
23
vulnerability VCID-vm94-wdga-rqdc
24
vulnerability VCID-wmvt-9z94-qkak
25
vulnerability VCID-xc11-sr2y-m3dj
26
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12
2
url pkg:composer/typo3/cms@10.2.2
purl pkg:composer/typo3/cms@10.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-4ntq-jdtt-7fad
3
vulnerability VCID-4xzz-vmc7-juh8
4
vulnerability VCID-5ddb-qvu6-c7dd
5
vulnerability VCID-66qa-16we-wkdw
6
vulnerability VCID-6g94-zrcc-mqf2
7
vulnerability VCID-7b93-yrbc-pudn
8
vulnerability VCID-8rgn-8qf5-ckf9
9
vulnerability VCID-91ky-rf6s-mudv
10
vulnerability VCID-9ce2-hvqa-97c5
11
vulnerability VCID-9guq-muyz-uke8
12
vulnerability VCID-9kzb-yw93-rqd3
13
vulnerability VCID-abwf-mjxx-xka8
14
vulnerability VCID-cmzk-5bm5-hbep
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-fajx-7vk2-yfd4
18
vulnerability VCID-gpfs-y5yk-8fad
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-jzk1-rp1c-yfc9
21
vulnerability VCID-k2ma-t35n-abha
22
vulnerability VCID-p2gb-esw8-3ya7
23
vulnerability VCID-ps8b-6s4z-57fx
24
vulnerability VCID-rmxx-e239-5uf8
25
vulnerability VCID-rtza-c724-4kfr
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-swkc-45zu-jfce
28
vulnerability VCID-tnkm-6p9x-fuaa
29
vulnerability VCID-tyba-yxs8-7kgb
30
vulnerability VCID-uspd-tbez-gbht
31
vulnerability VCID-ut55-j7gh-3bgt
32
vulnerability VCID-v1kq-a6wk-bka9
33
vulnerability VCID-v6tr-29p5-tyaa
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-vm94-wdga-rqdc
37
vulnerability VCID-wmvt-9z94-qkak
38
vulnerability VCID-ws7p-gwph-4khc
39
vulnerability VCID-xc11-sr2y-m3dj
40
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2
aliases CVE-2019-19848, GHSA-77p4-wfr8-977w
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3qs5-756e-1kdk
5
url VCID-3trr-dksg-fkbv
vulnerability_id VCID-3trr-dksg-fkbv
summary Insecure Deserialization in TYPO3 CMS.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-020/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-020/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GMS-2019-189
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3trr-dksg-fkbv
6
url VCID-5ecx-y3p3-1qdq
vulnerability_id VCID-5ecx-y3p3-1qdq
summary Typo3 Cross-Site Scripting in Link Handling
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-12748
reference_id
reference_type
scores
0
value 0.00301
scoring_system epss
scoring_elements 0.53963
published_at 2026-06-12T12:55:00Z
1
value 0.00301
scoring_system epss
scoring_elements 0.53837
published_at 2026-06-11T12:55:00Z
2
value 0.00301
scoring_system epss
scoring_elements 0.53967
published_at 2026-06-14T12:55:00Z
3
value 0.00301
scoring_system epss
scoring_elements 0.5398
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-12748
1
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
2
reference_url https://typo3.org/cms/release-news/typo3-8-release-notes
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/cms/release-news/typo3-8-release-notes
3
reference_url https://typo3.org/cms/release-news/typo3-8-release-notes/
reference_id
reference_type
scores
url https://typo3.org/cms/release-news/typo3-8-release-notes/
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-015
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-015
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-015/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-015/
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-12748
reference_id CVE-2019-12748
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-12748
7
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-12748.yaml
reference_id CVE-2019-12748.YAML
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-12748.yaml
8
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-12748.yaml
reference_id CVE-2019-12748.YAML
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-12748.yaml
9
reference_url https://github.com/advisories/GHSA-r6fv-56gp-j3r4
reference_id GHSA-r6fv-56gp-j3r4
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r6fv-56gp-j3r4
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases CVE-2019-12748, GHSA-r6fv-56gp-j3r4
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5ecx-y3p3-1qdq
7
url VCID-5z2r-ryxu-6bhs
vulnerability_id VCID-5z2r-ryxu-6bhs
summary Typo3 Information Disclosure in Backend User Interface
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-06-25-1.yaml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-06-25-1.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-014
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-014
3
reference_url https://github.com/advisories/GHSA-q9c4-9v5m-597p
reference_id GHSA-q9c4-9v5m-597p
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-q9c4-9v5m-597p
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GHSA-q9c4-9v5m-597p
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5z2r-ryxu-6bhs
8
url VCID-5zge-smza-eqfe
vulnerability_id VCID-5zge-smza-eqfe
summary 
Code Injection
Arbitrary Code Execution and Cross-Site Scripting in Backend API.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-019/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-019/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GMS-2019-188
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5zge-smza-eqfe
9
url VCID-65zk-rvrr-7qhv
vulnerability_id VCID-65zk-rvrr-7qhv
summary Security Misconfiguration in Frontend Session Handling.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-018/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-018/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GMS-2019-187
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-65zk-rvrr-7qhv
10
url VCID-7g9y-zjcr-jbds
vulnerability_id VCID-7g9y-zjcr-jbds
summary Security Misconfiguration in User Session Handling.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-011/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-011/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.25
purl pkg:composer/typo3/cms@8.7.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-96dm-8f1m-nfdz
12
vulnerability VCID-9guq-muyz-uke8
13
vulnerability VCID-d7rj-6q7r-dug5
14
vulnerability VCID-dehe-pf1a-4ugh
15
vulnerability VCID-f21e-8r3b-6ybn
16
vulnerability VCID-fajx-7vk2-yfd4
17
vulnerability VCID-gagg-ngrt-sqe3
18
vulnerability VCID-hakk-r7f8-3fhg
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-k2ma-t35n-abha
21
vulnerability VCID-kjca-etjw-kbee
22
vulnerability VCID-krk3-7gbv-p3dd
23
vulnerability VCID-mdja-xssw-2fbq
24
vulnerability VCID-na68-jbdb-2bg9
25
vulnerability VCID-p2gb-esw8-3ya7
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-tnkm-6p9x-fuaa
28
vulnerability VCID-tyba-yxs8-7kgb
29
vulnerability VCID-v1qu-g63z-eqfp
30
vulnerability VCID-v9eq-8h8q-f7gb
31
vulnerability VCID-vcbt-ta48-vybq
32
vulnerability VCID-wmvt-9z94-qkak
33
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25
1
url pkg:composer/typo3/cms@9.5.6
purl pkg:composer/typo3/cms@9.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-7b93-yrbc-pudn
12
vulnerability VCID-8rgn-8qf5-ckf9
13
vulnerability VCID-96dm-8f1m-nfdz
14
vulnerability VCID-9guq-muyz-uke8
15
vulnerability VCID-9kzb-yw93-rqd3
16
vulnerability VCID-abwf-mjxx-xka8
17
vulnerability VCID-d7rj-6q7r-dug5
18
vulnerability VCID-dehe-pf1a-4ugh
19
vulnerability VCID-ekhn-mqrw-uudd
20
vulnerability VCID-f21e-8r3b-6ybn
21
vulnerability VCID-fajx-7vk2-yfd4
22
vulnerability VCID-gagg-ngrt-sqe3
23
vulnerability VCID-gcxn-d8pt-bkbx
24
vulnerability VCID-gh3r-b7t4-b7g2
25
vulnerability VCID-gpfs-y5yk-8fad
26
vulnerability VCID-hakk-r7f8-3fhg
27
vulnerability VCID-hrpp-29gt-1kap
28
vulnerability VCID-humm-nga7-hbe4
29
vulnerability VCID-jzk1-rp1c-yfc9
30
vulnerability VCID-k2ma-t35n-abha
31
vulnerability VCID-kjca-etjw-kbee
32
vulnerability VCID-krk3-7gbv-p3dd
33
vulnerability VCID-mdja-xssw-2fbq
34
vulnerability VCID-na68-jbdb-2bg9
35
vulnerability VCID-p2gb-esw8-3ya7
36
vulnerability VCID-ps8b-6s4z-57fx
37
vulnerability VCID-s8vm-j73f-d7g5
38
vulnerability VCID-swkc-45zu-jfce
39
vulnerability VCID-tnkm-6p9x-fuaa
40
vulnerability VCID-tyba-yxs8-7kgb
41
vulnerability VCID-v1qu-g63z-eqfp
42
vulnerability VCID-v9eq-8h8q-f7gb
43
vulnerability VCID-vcbt-ta48-vybq
44
vulnerability VCID-vm94-wdga-rqdc
45
vulnerability VCID-wmvt-9z94-qkak
46
vulnerability VCID-xc11-sr2y-m3dj
47
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6
aliases GMS-2019-181
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7g9y-zjcr-jbds
11
url VCID-7haq-hf25-3fhr
vulnerability_id VCID-7haq-hf25-3fhr
summary 
Cross-site Scripting
Cross-Site Scripting in Fluid Engine.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-013/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-013/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.25
purl pkg:composer/typo3/cms@8.7.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-96dm-8f1m-nfdz
12
vulnerability VCID-9guq-muyz-uke8
13
vulnerability VCID-d7rj-6q7r-dug5
14
vulnerability VCID-dehe-pf1a-4ugh
15
vulnerability VCID-f21e-8r3b-6ybn
16
vulnerability VCID-fajx-7vk2-yfd4
17
vulnerability VCID-gagg-ngrt-sqe3
18
vulnerability VCID-hakk-r7f8-3fhg
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-k2ma-t35n-abha
21
vulnerability VCID-kjca-etjw-kbee
22
vulnerability VCID-krk3-7gbv-p3dd
23
vulnerability VCID-mdja-xssw-2fbq
24
vulnerability VCID-na68-jbdb-2bg9
25
vulnerability VCID-p2gb-esw8-3ya7
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-tnkm-6p9x-fuaa
28
vulnerability VCID-tyba-yxs8-7kgb
29
vulnerability VCID-v1qu-g63z-eqfp
30
vulnerability VCID-v9eq-8h8q-f7gb
31
vulnerability VCID-vcbt-ta48-vybq
32
vulnerability VCID-wmvt-9z94-qkak
33
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25
1
url pkg:composer/typo3/cms@9.5.6
purl pkg:composer/typo3/cms@9.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-7b93-yrbc-pudn
12
vulnerability VCID-8rgn-8qf5-ckf9
13
vulnerability VCID-96dm-8f1m-nfdz
14
vulnerability VCID-9guq-muyz-uke8
15
vulnerability VCID-9kzb-yw93-rqd3
16
vulnerability VCID-abwf-mjxx-xka8
17
vulnerability VCID-d7rj-6q7r-dug5
18
vulnerability VCID-dehe-pf1a-4ugh
19
vulnerability VCID-ekhn-mqrw-uudd
20
vulnerability VCID-f21e-8r3b-6ybn
21
vulnerability VCID-fajx-7vk2-yfd4
22
vulnerability VCID-gagg-ngrt-sqe3
23
vulnerability VCID-gcxn-d8pt-bkbx
24
vulnerability VCID-gh3r-b7t4-b7g2
25
vulnerability VCID-gpfs-y5yk-8fad
26
vulnerability VCID-hakk-r7f8-3fhg
27
vulnerability VCID-hrpp-29gt-1kap
28
vulnerability VCID-humm-nga7-hbe4
29
vulnerability VCID-jzk1-rp1c-yfc9
30
vulnerability VCID-k2ma-t35n-abha
31
vulnerability VCID-kjca-etjw-kbee
32
vulnerability VCID-krk3-7gbv-p3dd
33
vulnerability VCID-mdja-xssw-2fbq
34
vulnerability VCID-na68-jbdb-2bg9
35
vulnerability VCID-p2gb-esw8-3ya7
36
vulnerability VCID-ps8b-6s4z-57fx
37
vulnerability VCID-s8vm-j73f-d7g5
38
vulnerability VCID-swkc-45zu-jfce
39
vulnerability VCID-tnkm-6p9x-fuaa
40
vulnerability VCID-tyba-yxs8-7kgb
41
vulnerability VCID-v1qu-g63z-eqfp
42
vulnerability VCID-v9eq-8h8q-f7gb
43
vulnerability VCID-vcbt-ta48-vybq
44
vulnerability VCID-vm94-wdga-rqdc
45
vulnerability VCID-wmvt-9z94-qkak
46
vulnerability VCID-xc11-sr2y-m3dj
47
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6
aliases GMS-2019-180
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7haq-hf25-3fhr
12
url VCID-96dm-8f1m-nfdz
vulnerability_id VCID-96dm-8f1m-nfdz
summary TYPO3 Vulnerable to Insecure Deserialization
references
0
reference_url http://github.com/TYPO3/typo3/commit/647aa7afa582983cddc547fa106d31e2b1ef34fe
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://github.com/TYPO3/typo3/commit/647aa7afa582983cddc547fa106d31e2b1ef34fe
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-12747
reference_id
reference_type
scores
0
value 0.01559
scoring_system epss
scoring_elements 0.81881
published_at 2026-06-11T12:55:00Z
1
value 0.01559
scoring_system epss
scoring_elements 0.81943
published_at 2026-06-14T12:55:00Z
2
value 0.01559
scoring_system epss
scoring_elements 0.81951
published_at 2026-06-13T12:55:00Z
3
value 0.01559
scoring_system epss
scoring_elements 0.81941
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-12747
2
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
3
reference_url https://typo3.org/cms/release-news/typo3-8-release-notes
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/cms/release-news/typo3-8-release-notes
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-020
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-020
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-12747
reference_id CVE-2019-12747
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-12747
6
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-12747.yaml
reference_id CVE-2019-12747.YAML
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-12747.yaml
7
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-12747.yaml
reference_id CVE-2019-12747.YAML
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-12747.yaml
8
reference_url https://github.com/advisories/GHSA-86hp-xrhj-fhpq
reference_id GHSA-86hp-xrhj-fhpq
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-86hp-xrhj-fhpq
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases CVE-2019-12747, GHSA-86hp-xrhj-fhpq
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96dm-8f1m-nfdz
13
url VCID-9guq-muyz-uke8
vulnerability_id VCID-9guq-muyz-uke8
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-32768
reference_id
reference_type
scores
0
value 0.00284
scoring_system epss
scoring_elements 0.52152
published_at 2026-06-11T12:55:00Z
1
value 0.00284
scoring_system epss
scoring_elements 0.52283
published_at 2026-06-12T12:55:00Z
2
value 0.00284
scoring_system epss
scoring_elements 0.52294
published_at 2026-06-13T12:55:00Z
3
value 0.00284
scoring_system epss
scoring_elements 0.52276
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-32768
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32768.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32768.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32768.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32768.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-c5c9-8c6m-727v
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-c5c9-8c6m-727v
4
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-c5c9-8c6m-727v
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/security/advisories/GHSA-c5c9-8c6m-727v
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-32768
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-32768
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-013
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-013
7
reference_url https://github.com/advisories/GHSA-c5c9-8c6m-727v
reference_id GHSA-c5c9-8c6m-727v
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-c5c9-8c6m-727v
fixed_packages
0
url pkg:composer/typo3/cms@8.7.42
purl pkg:composer/typo3/cms@8.7.42
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.42
1
url pkg:composer/typo3/cms@9.5.29
purl pkg:composer/typo3/cms@9.5.29
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9kzb-yw93-rqd3
1
vulnerability VCID-d7rj-6q7r-dug5
2
vulnerability VCID-fajx-7vk2-yfd4
3
vulnerability VCID-humm-nga7-hbe4
4
vulnerability VCID-p2gb-esw8-3ya7
5
vulnerability VCID-tyba-yxs8-7kgb
6
vulnerability VCID-vcbt-ta48-vybq
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.29
2
url pkg:composer/typo3/cms@10.4.19
purl pkg:composer/typo3/cms@10.4.19
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-cmzk-5bm5-hbep
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-fajx-7vk2-yfd4
9
vulnerability VCID-humm-nga7-hbe4
10
vulnerability VCID-p2gb-esw8-3ya7
11
vulnerability VCID-rmxx-e239-5uf8
12
vulnerability VCID-tyba-yxs8-7kgb
13
vulnerability VCID-uspd-tbez-gbht
14
vulnerability VCID-v1kq-a6wk-bka9
15
vulnerability VCID-vcbt-ta48-vybq
16
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.19
3
url pkg:composer/typo3/cms@11.3.2
purl pkg:composer/typo3/cms@11.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-axcy-s1kz-3fdv
8
vulnerability VCID-cmzk-5bm5-hbep
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-fajx-7vk2-yfd4
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-p2gb-esw8-3ya7
13
vulnerability VCID-rmxx-e239-5uf8
14
vulnerability VCID-tyba-yxs8-7kgb
15
vulnerability VCID-uspd-tbez-gbht
16
vulnerability VCID-v1kq-a6wk-bka9
17
vulnerability VCID-vcbt-ta48-vybq
18
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.2
aliases CVE-2021-32768, GHSA-c5c9-8c6m-727v
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9guq-muyz-uke8
14
url VCID-9xdw-n2ct-nfam
vulnerability_id VCID-9xdw-n2ct-nfam
summary 
Code Injection
Possible Arbitrary Code Execution in Image Processing.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-012/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-012/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.25
purl pkg:composer/typo3/cms@8.7.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-96dm-8f1m-nfdz
12
vulnerability VCID-9guq-muyz-uke8
13
vulnerability VCID-d7rj-6q7r-dug5
14
vulnerability VCID-dehe-pf1a-4ugh
15
vulnerability VCID-f21e-8r3b-6ybn
16
vulnerability VCID-fajx-7vk2-yfd4
17
vulnerability VCID-gagg-ngrt-sqe3
18
vulnerability VCID-hakk-r7f8-3fhg
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-k2ma-t35n-abha
21
vulnerability VCID-kjca-etjw-kbee
22
vulnerability VCID-krk3-7gbv-p3dd
23
vulnerability VCID-mdja-xssw-2fbq
24
vulnerability VCID-na68-jbdb-2bg9
25
vulnerability VCID-p2gb-esw8-3ya7
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-tnkm-6p9x-fuaa
28
vulnerability VCID-tyba-yxs8-7kgb
29
vulnerability VCID-v1qu-g63z-eqfp
30
vulnerability VCID-v9eq-8h8q-f7gb
31
vulnerability VCID-vcbt-ta48-vybq
32
vulnerability VCID-wmvt-9z94-qkak
33
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25
1
url pkg:composer/typo3/cms@9.5.6
purl pkg:composer/typo3/cms@9.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-7b93-yrbc-pudn
12
vulnerability VCID-8rgn-8qf5-ckf9
13
vulnerability VCID-96dm-8f1m-nfdz
14
vulnerability VCID-9guq-muyz-uke8
15
vulnerability VCID-9kzb-yw93-rqd3
16
vulnerability VCID-abwf-mjxx-xka8
17
vulnerability VCID-d7rj-6q7r-dug5
18
vulnerability VCID-dehe-pf1a-4ugh
19
vulnerability VCID-ekhn-mqrw-uudd
20
vulnerability VCID-f21e-8r3b-6ybn
21
vulnerability VCID-fajx-7vk2-yfd4
22
vulnerability VCID-gagg-ngrt-sqe3
23
vulnerability VCID-gcxn-d8pt-bkbx
24
vulnerability VCID-gh3r-b7t4-b7g2
25
vulnerability VCID-gpfs-y5yk-8fad
26
vulnerability VCID-hakk-r7f8-3fhg
27
vulnerability VCID-hrpp-29gt-1kap
28
vulnerability VCID-humm-nga7-hbe4
29
vulnerability VCID-jzk1-rp1c-yfc9
30
vulnerability VCID-k2ma-t35n-abha
31
vulnerability VCID-kjca-etjw-kbee
32
vulnerability VCID-krk3-7gbv-p3dd
33
vulnerability VCID-mdja-xssw-2fbq
34
vulnerability VCID-na68-jbdb-2bg9
35
vulnerability VCID-p2gb-esw8-3ya7
36
vulnerability VCID-ps8b-6s4z-57fx
37
vulnerability VCID-s8vm-j73f-d7g5
38
vulnerability VCID-swkc-45zu-jfce
39
vulnerability VCID-tnkm-6p9x-fuaa
40
vulnerability VCID-tyba-yxs8-7kgb
41
vulnerability VCID-v1qu-g63z-eqfp
42
vulnerability VCID-v9eq-8h8q-f7gb
43
vulnerability VCID-vcbt-ta48-vybq
44
vulnerability VCID-vm94-wdga-rqdc
45
vulnerability VCID-wmvt-9z94-qkak
46
vulnerability VCID-xc11-sr2y-m3dj
47
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6
aliases GMS-2019-182
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9xdw-n2ct-nfam
15
url VCID-d7rj-6q7r-dug5
vulnerability_id VCID-d7rj-6q7r-dug5
summary TYPO3 CMS Stored Cross-Site Scripting via FileDumpController
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-36107
reference_id
reference_type
scores
0
value 0.00687
scoring_system epss
scoring_elements 0.72304
published_at 2026-06-14T12:55:00Z
1
value 0.00687
scoring_system epss
scoring_elements 0.72214
published_at 2026-06-11T12:55:00Z
2
value 0.00687
scoring_system epss
scoring_elements 0.72297
published_at 2026-06-12T12:55:00Z
3
value 0.00687
scoring_system epss
scoring_elements 0.7231
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-36107
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/546208428c861a09d62b86cde141eb19a81fae66
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/546208428c861a09d62b86cde141eb19a81fae66
3
reference_url https://github.com/TYPO3/typo3/commit/bd58d2ff2eeef89e63ef754a2389597d22622a39
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/bd58d2ff2eeef89e63ef754a2389597d22622a39
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2022-009
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2022-009
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-36107
reference_id CVE-2022-36107
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-36107
6
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-36107.yaml
reference_id CVE-2022-36107.YAML
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-36107.yaml
7
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-36107.yaml
reference_id CVE-2022-36107.YAML
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-36107.yaml
8
reference_url https://github.com/advisories/GHSA-9c6w-55cp-5w25
reference_id GHSA-9c6w-55cp-5w25
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9c6w-55cp-5w25
9
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-9c6w-55cp-5w25
reference_id GHSA-9c6w-55cp-5w25
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/security/advisories/GHSA-9c6w-55cp-5w25
fixed_packages
0
url pkg:composer/typo3/cms@10.4.32
purl pkg:composer/typo3/cms@10.4.32
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ddb-qvu6-c7dd
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-humm-nga7-hbe4
3
vulnerability VCID-p2gb-esw8-3ya7
4
vulnerability VCID-tyba-yxs8-7kgb
5
vulnerability VCID-v1kq-a6wk-bka9
6
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.32
1
url pkg:composer/typo3/cms@11.5.16
purl pkg:composer/typo3/cms@11.5.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ddb-qvu6-c7dd
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-humm-nga7-hbe4
3
vulnerability VCID-p2gb-esw8-3ya7
4
vulnerability VCID-tyba-yxs8-7kgb
5
vulnerability VCID-v1kq-a6wk-bka9
6
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.16
aliases CVE-2022-36107, GHSA-9c6w-55cp-5w25
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d7rj-6q7r-dug5
16
url VCID-dehe-pf1a-4ugh
vulnerability_id VCID-dehe-pf1a-4ugh
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-32669
reference_id
reference_type
scores
0
value 0.00374
scoring_system epss
scoring_elements 0.59498
published_at 2026-06-11T12:55:00Z
1
value 0.00374
scoring_system epss
scoring_elements 0.59607
published_at 2026-06-12T12:55:00Z
2
value 0.00374
scoring_system epss
scoring_elements 0.59619
published_at 2026-06-13T12:55:00Z
3
value 0.00374
scoring_system epss
scoring_elements 0.59608
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-32669
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32669.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32669.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32669.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32669.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-rgcg-28xm-8mmw
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-rgcg-28xm-8mmw
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-32669
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-32669
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-011
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-011
6
reference_url https://github.com/advisories/GHSA-rgcg-28xm-8mmw
reference_id GHSA-rgcg-28xm-8mmw
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-rgcg-28xm-8mmw
fixed_packages
0
url pkg:composer/typo3/cms@9.5.28
purl pkg:composer/typo3/cms@9.5.28
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tyba-yxs8-7kgb
8
vulnerability VCID-v9eq-8h8q-f7gb
9
vulnerability VCID-vcbt-ta48-vybq
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.28
1
url pkg:composer/typo3/cms@10.4.18
purl pkg:composer/typo3/cms@10.4.18
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-p2gb-esw8-3ya7
12
vulnerability VCID-rmxx-e239-5uf8
13
vulnerability VCID-tyba-yxs8-7kgb
14
vulnerability VCID-uspd-tbez-gbht
15
vulnerability VCID-v1kq-a6wk-bka9
16
vulnerability VCID-vcbt-ta48-vybq
17
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.18
2
url pkg:composer/typo3/cms@11.3.1
purl pkg:composer/typo3/cms@11.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-axcy-s1kz-3fdv
9
vulnerability VCID-cmzk-5bm5-hbep
10
vulnerability VCID-d7rj-6q7r-dug5
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-vcbt-ta48-vybq
19
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.1
aliases CVE-2021-32669, GHSA-rgcg-28xm-8mmw
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dehe-pf1a-4ugh
17
url VCID-f21e-8r3b-6ybn
vulnerability_id VCID-f21e-8r3b-6ybn
summary Information Disclosure in Backend User Interface.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-014/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-014/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GMS-2019-185
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f21e-8r3b-6ybn
18
url VCID-fajx-7vk2-yfd4
vulnerability_id VCID-fajx-7vk2-yfd4
summary TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that observing response time during user authentication (backend and frontend) can be used to distinguish between existing and non-existing user accounts. Extension authors of 3rd party TYPO3 extensions providing a custom authentication service should check if the extension is affected by the described problem. Affected extensions must implement new `MimicServiceInterface::mimicAuthUser`, which simulates corresponding times regular processing would usually take. Update to TYPO3 version 7.6.58 ELTS, 8.7.48 ELTS, 9.5.37 ELTS, 10.4.32 or 11.5.16 that fix this problem. There are no known workarounds for this issue.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-36105
reference_id
reference_type
scores
0
value 0.00283
scoring_system epss
scoring_elements 0.52164
published_at 2026-06-12T12:55:00Z
1
value 0.00283
scoring_system epss
scoring_elements 0.52158
published_at 2026-06-14T12:55:00Z
2
value 0.00283
scoring_system epss
scoring_elements 0.52034
published_at 2026-06-11T12:55:00Z
3
value 0.00283
scoring_system epss
scoring_elements 0.52176
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-36105
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/f0fc9c4cd7c38207c30dd158de53ee5d9d6f41a2
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/f0fc9c4cd7c38207c30dd158de53ee5d9d6f41a2
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-36105
reference_id CVE-2022-36105
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-36105
4
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-36105.yaml
reference_id CVE-2022-36105.YAML
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-36105.yaml
5
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-36105.yaml
reference_id CVE-2022-36105.YAML
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-36105.yaml
6
reference_url https://github.com/TYPO3/typo3/commit/f8b83ce15d4ea275a5a5e564e5d324242f7937b6
reference_id f8b83ce15d4ea275a5a5e564e5d324242f7937b6
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:51:34Z/
url https://github.com/TYPO3/typo3/commit/f8b83ce15d4ea275a5a5e564e5d324242f7937b6
7
reference_url https://github.com/advisories/GHSA-m392-235j-9r7r
reference_id GHSA-m392-235j-9r7r
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m392-235j-9r7r
8
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-m392-235j-9r7r
reference_id GHSA-m392-235j-9r7r
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:51:34Z/
url https://github.com/TYPO3/typo3/security/advisories/GHSA-m392-235j-9r7r
9
reference_url https://typo3.org/security/advisory/typo3-core-sa-2022-007
reference_id typo3-core-sa-2022-007
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:51:34Z/
url https://typo3.org/security/advisory/typo3-core-sa-2022-007
fixed_packages
0
url pkg:composer/typo3/cms@10.4.32
purl pkg:composer/typo3/cms@10.4.32
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ddb-qvu6-c7dd
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-humm-nga7-hbe4
3
vulnerability VCID-p2gb-esw8-3ya7
4
vulnerability VCID-tyba-yxs8-7kgb
5
vulnerability VCID-v1kq-a6wk-bka9
6
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.32
1
url pkg:composer/typo3/cms@11.5.16
purl pkg:composer/typo3/cms@11.5.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ddb-qvu6-c7dd
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-humm-nga7-hbe4
3
vulnerability VCID-p2gb-esw8-3ya7
4
vulnerability VCID-tyba-yxs8-7kgb
5
vulnerability VCID-v1kq-a6wk-bka9
6
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.16
aliases CVE-2022-36105, GHSA-m392-235j-9r7r
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fajx-7vk2-yfd4
19
url VCID-gagg-ngrt-sqe3
vulnerability_id VCID-gagg-ngrt-sqe3
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-19850
reference_id
reference_type
scores
0
value 0.00284
scoring_system epss
scoring_elements 0.52175
published_at 2026-06-11T12:55:00Z
1
value 0.00284
scoring_system epss
scoring_elements 0.52305
published_at 2026-06-12T12:55:00Z
2
value 0.00284
scoring_system epss
scoring_elements 0.52316
published_at 2026-06-13T12:55:00Z
3
value 0.00284
scoring_system epss
scoring_elements 0.52298
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-19850
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-19850
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-19850
3
reference_url https://review.typo3.org/q/%2522Resolves:+%252389452%2522+topic:security
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://review.typo3.org/q/%2522Resolves:+%252389452%2522+topic:security
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-025
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-025
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-025/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-025/
6
reference_url https://github.com/advisories/GHSA-59pj-7mjh-4465
reference_id GHSA-59pj-7mjh-4465
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-59pj-7mjh-4465
fixed_packages
0
url pkg:composer/typo3/cms@8.7.30
purl pkg:composer/typo3/cms@8.7.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-9guq-muyz-uke8
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-wmvt-9z94-qkak
15
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30
1
url pkg:composer/typo3/cms@9.5.12
purl pkg:composer/typo3/cms@9.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-7b93-yrbc-pudn
3
vulnerability VCID-8rgn-8qf5-ckf9
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-abwf-mjxx-xka8
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-dehe-pf1a-4ugh
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-gpfs-y5yk-8fad
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-jzk1-rp1c-yfc9
13
vulnerability VCID-k2ma-t35n-abha
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-ps8b-6s4z-57fx
16
vulnerability VCID-s8vm-j73f-d7g5
17
vulnerability VCID-swkc-45zu-jfce
18
vulnerability VCID-tnkm-6p9x-fuaa
19
vulnerability VCID-tyba-yxs8-7kgb
20
vulnerability VCID-ut55-j7gh-3bgt
21
vulnerability VCID-v9eq-8h8q-f7gb
22
vulnerability VCID-vcbt-ta48-vybq
23
vulnerability VCID-vm94-wdga-rqdc
24
vulnerability VCID-wmvt-9z94-qkak
25
vulnerability VCID-xc11-sr2y-m3dj
26
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12
2
url pkg:composer/typo3/cms@10.2.2
purl pkg:composer/typo3/cms@10.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-4ntq-jdtt-7fad
3
vulnerability VCID-4xzz-vmc7-juh8
4
vulnerability VCID-5ddb-qvu6-c7dd
5
vulnerability VCID-66qa-16we-wkdw
6
vulnerability VCID-6g94-zrcc-mqf2
7
vulnerability VCID-7b93-yrbc-pudn
8
vulnerability VCID-8rgn-8qf5-ckf9
9
vulnerability VCID-91ky-rf6s-mudv
10
vulnerability VCID-9ce2-hvqa-97c5
11
vulnerability VCID-9guq-muyz-uke8
12
vulnerability VCID-9kzb-yw93-rqd3
13
vulnerability VCID-abwf-mjxx-xka8
14
vulnerability VCID-cmzk-5bm5-hbep
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-fajx-7vk2-yfd4
18
vulnerability VCID-gpfs-y5yk-8fad
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-jzk1-rp1c-yfc9
21
vulnerability VCID-k2ma-t35n-abha
22
vulnerability VCID-p2gb-esw8-3ya7
23
vulnerability VCID-ps8b-6s4z-57fx
24
vulnerability VCID-rmxx-e239-5uf8
25
vulnerability VCID-rtza-c724-4kfr
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-swkc-45zu-jfce
28
vulnerability VCID-tnkm-6p9x-fuaa
29
vulnerability VCID-tyba-yxs8-7kgb
30
vulnerability VCID-uspd-tbez-gbht
31
vulnerability VCID-ut55-j7gh-3bgt
32
vulnerability VCID-v1kq-a6wk-bka9
33
vulnerability VCID-v6tr-29p5-tyaa
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-vm94-wdga-rqdc
37
vulnerability VCID-wmvt-9z94-qkak
38
vulnerability VCID-ws7p-gwph-4khc
39
vulnerability VCID-xc11-sr2y-m3dj
40
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2
aliases CVE-2019-19850, GHSA-59pj-7mjh-4465
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gagg-ngrt-sqe3
20
url VCID-hakk-r7f8-3fhg
vulnerability_id VCID-hakk-r7f8-3fhg
summary TYPO3 Cross-Site Scripting in Form Framework validation handling
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-1.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-1.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/966a0038c16c04d484c1703fba9fdc13f3e7a95c
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/966a0038c16c04d484c1703fba9fdc13f3e7a95c
3
reference_url https://github.com/TYPO3/typo3/commit/9692bf83f8310cca17c9a968c4fe92ffe0deb59d
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/9692bf83f8310cca17c9a968c4fe92ffe0deb59d
4
reference_url https://github.com/TYPO3/typo3/commit/e971b012c837f1e64c1498b567ef6eec304febe5
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/e971b012c837f1e64c1498b567ef6eec304febe5
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-021
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-021
6
reference_url https://github.com/advisories/GHSA-v8m4-3w37-ghxx
reference_id GHSA-v8m4-3w37-ghxx
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-v8m4-3w37-ghxx
fixed_packages
0
url pkg:composer/typo3/cms@8.7.30
purl pkg:composer/typo3/cms@8.7.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-9guq-muyz-uke8
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-wmvt-9z94-qkak
15
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30
1
url pkg:composer/typo3/cms@9.5.12
purl pkg:composer/typo3/cms@9.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-7b93-yrbc-pudn
3
vulnerability VCID-8rgn-8qf5-ckf9
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-abwf-mjxx-xka8
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-dehe-pf1a-4ugh
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-gpfs-y5yk-8fad
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-jzk1-rp1c-yfc9
13
vulnerability VCID-k2ma-t35n-abha
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-ps8b-6s4z-57fx
16
vulnerability VCID-s8vm-j73f-d7g5
17
vulnerability VCID-swkc-45zu-jfce
18
vulnerability VCID-tnkm-6p9x-fuaa
19
vulnerability VCID-tyba-yxs8-7kgb
20
vulnerability VCID-ut55-j7gh-3bgt
21
vulnerability VCID-v9eq-8h8q-f7gb
22
vulnerability VCID-vcbt-ta48-vybq
23
vulnerability VCID-vm94-wdga-rqdc
24
vulnerability VCID-wmvt-9z94-qkak
25
vulnerability VCID-xc11-sr2y-m3dj
26
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12
2
url pkg:composer/typo3/cms@10.2.1
purl pkg:composer/typo3/cms@10.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-4ntq-jdtt-7fad
3
vulnerability VCID-4xzz-vmc7-juh8
4
vulnerability VCID-5ddb-qvu6-c7dd
5
vulnerability VCID-66qa-16we-wkdw
6
vulnerability VCID-6g94-zrcc-mqf2
7
vulnerability VCID-7b93-yrbc-pudn
8
vulnerability VCID-8rgn-8qf5-ckf9
9
vulnerability VCID-91ky-rf6s-mudv
10
vulnerability VCID-9ce2-hvqa-97c5
11
vulnerability VCID-9guq-muyz-uke8
12
vulnerability VCID-9kzb-yw93-rqd3
13
vulnerability VCID-abwf-mjxx-xka8
14
vulnerability VCID-cmzk-5bm5-hbep
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-fajx-7vk2-yfd4
18
vulnerability VCID-gpfs-y5yk-8fad
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-jzk1-rp1c-yfc9
21
vulnerability VCID-k2ma-t35n-abha
22
vulnerability VCID-p2gb-esw8-3ya7
23
vulnerability VCID-ps8b-6s4z-57fx
24
vulnerability VCID-rmxx-e239-5uf8
25
vulnerability VCID-rtza-c724-4kfr
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-swkc-45zu-jfce
28
vulnerability VCID-tnkm-6p9x-fuaa
29
vulnerability VCID-tyba-yxs8-7kgb
30
vulnerability VCID-uspd-tbez-gbht
31
vulnerability VCID-ut55-j7gh-3bgt
32
vulnerability VCID-v1kq-a6wk-bka9
33
vulnerability VCID-v6tr-29p5-tyaa
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-vm94-wdga-rqdc
37
vulnerability VCID-wmvt-9z94-qkak
38
vulnerability VCID-ws7p-gwph-4khc
39
vulnerability VCID-xc11-sr2y-m3dj
40
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1
aliases GHSA-v8m4-3w37-ghxx
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hakk-r7f8-3fhg
21
url VCID-humm-nga7-hbe4
vulnerability_id VCID-humm-nga7-hbe4
summary TYPO3 is an open source PHP based web content management system. In versions prior to 8.7.49, 9.5.38, 10.4.33, 11.5.20, and 12.1.1 TYPO3 is vulnerable to Improper Authentication. Restricting frontend login to specific users, organized in different storage folders (partitions), can be bypassed. A potential attacker might use this ambiguity in usernames to get access to a different account - however, credentials must be known to the adversary. This issue is patched in versions 8.7.49 ELTS, 9.5.38 ELTS, 10.4.33, 11.5.20, 12.1.1.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-23501
reference_id
reference_type
scores
0
value 0.00198
scoring_system epss
scoring_elements 0.41932
published_at 2026-06-14T12:55:00Z
1
value 0.00198
scoring_system epss
scoring_elements 0.41758
published_at 2026-06-11T12:55:00Z
2
value 0.00198
scoring_system epss
scoring_elements 0.41942
published_at 2026-06-13T12:55:00Z
3
value 0.00198
scoring_system epss
scoring_elements 0.41924
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-23501
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-23501.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-23501.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-23501.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-23501.yaml
3
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
4
reference_url https://github.com/TYPO3/typo3/commit/28be9cdb3fed02ce4cfc6fa2d39f7d8e2266eced
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/28be9cdb3fed02ce4cfc6fa2d39f7d8e2266eced
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-23501
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-23501
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2022-013
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2022-013
7
reference_url https://github.com/advisories/GHSA-jfp7-79g7-89rf
reference_id GHSA-jfp7-79g7-89rf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jfp7-79g7-89rf
8
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-jfp7-79g7-89rf
reference_id GHSA-jfp7-79g7-89rf
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T18:48:00Z/
url https://github.com/TYPO3/typo3/security/advisories/GHSA-jfp7-79g7-89rf
fixed_packages
0
url pkg:composer/typo3/cms@10.4.33
purl pkg:composer/typo3/cms@10.4.33
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-p2gb-esw8-3ya7
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.33
1
url pkg:composer/typo3/cms@11.5.20
purl pkg:composer/typo3/cms@11.5.20
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-p2gb-esw8-3ya7
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.20
2
url pkg:composer/typo3/cms@12.1.1
purl pkg:composer/typo3/cms@12.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-p2gb-esw8-3ya7
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@12.1.1
aliases CVE-2022-23501, GHSA-jfp7-79g7-89rf, GMS-2022-8134
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-humm-nga7-hbe4
22
url VCID-hz11-99wt-fugr
vulnerability_id VCID-hz11-99wt-fugr
summary TYPO3 Image Processing susceptible to Code Execution
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11832
reference_id
reference_type
scores
0
value 0.00898
scoring_system epss
scoring_elements 0.76172
published_at 2026-06-12T12:55:00Z
1
value 0.00898
scoring_system epss
scoring_elements 0.76101
published_at 2026-06-11T12:55:00Z
2
value 0.00898
scoring_system epss
scoring_elements 0.76179
published_at 2026-06-14T12:55:00Z
3
value 0.00898
scoring_system epss
scoring_elements 0.76185
published_at 2026-06-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11832
1
reference_url https://github.com/github/advisory-database/pull/3530
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/pull/3530
2
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
3
reference_url https://github.com/TYPO3/typo3/commit/2c04eeac44733fda491f92c697f88c1337d19c79
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/2c04eeac44733fda491f92c697f88c1337d19c79
4
reference_url https://github.com/TYPO3/typo3/commit/51fdb774a57ee30e8d60c0e33b4a0b92d775739e
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/51fdb774a57ee30e8d60c0e33b4a0b92d775739e
5
reference_url https://github.com/TYPO3/typo3/commit/e845d90b82b2f72ab12a9e37f15082297832beca
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/e845d90b82b2f72ab12a9e37f15082297832beca
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-012
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-012
7
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-012/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-012/
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-11832
reference_id CVE-2019-11832
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-11832
9
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-11832.yaml
reference_id CVE-2019-11832.YAML
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-11832.yaml
10
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-11832.yaml
reference_id CVE-2019-11832.YAML
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-11832.yaml
11
reference_url https://github.com/advisories/GHSA-3w4h-r27h-4r2w
reference_id GHSA-3w4h-r27h-4r2w
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3w4h-r27h-4r2w
fixed_packages
0
url pkg:composer/typo3/cms@8.7.25
purl pkg:composer/typo3/cms@8.7.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-96dm-8f1m-nfdz
12
vulnerability VCID-9guq-muyz-uke8
13
vulnerability VCID-d7rj-6q7r-dug5
14
vulnerability VCID-dehe-pf1a-4ugh
15
vulnerability VCID-f21e-8r3b-6ybn
16
vulnerability VCID-fajx-7vk2-yfd4
17
vulnerability VCID-gagg-ngrt-sqe3
18
vulnerability VCID-hakk-r7f8-3fhg
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-k2ma-t35n-abha
21
vulnerability VCID-kjca-etjw-kbee
22
vulnerability VCID-krk3-7gbv-p3dd
23
vulnerability VCID-mdja-xssw-2fbq
24
vulnerability VCID-na68-jbdb-2bg9
25
vulnerability VCID-p2gb-esw8-3ya7
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-tnkm-6p9x-fuaa
28
vulnerability VCID-tyba-yxs8-7kgb
29
vulnerability VCID-v1qu-g63z-eqfp
30
vulnerability VCID-v9eq-8h8q-f7gb
31
vulnerability VCID-vcbt-ta48-vybq
32
vulnerability VCID-wmvt-9z94-qkak
33
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25
1
url pkg:composer/typo3/cms@9.5.6
purl pkg:composer/typo3/cms@9.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-7b93-yrbc-pudn
12
vulnerability VCID-8rgn-8qf5-ckf9
13
vulnerability VCID-96dm-8f1m-nfdz
14
vulnerability VCID-9guq-muyz-uke8
15
vulnerability VCID-9kzb-yw93-rqd3
16
vulnerability VCID-abwf-mjxx-xka8
17
vulnerability VCID-d7rj-6q7r-dug5
18
vulnerability VCID-dehe-pf1a-4ugh
19
vulnerability VCID-ekhn-mqrw-uudd
20
vulnerability VCID-f21e-8r3b-6ybn
21
vulnerability VCID-fajx-7vk2-yfd4
22
vulnerability VCID-gagg-ngrt-sqe3
23
vulnerability VCID-gcxn-d8pt-bkbx
24
vulnerability VCID-gh3r-b7t4-b7g2
25
vulnerability VCID-gpfs-y5yk-8fad
26
vulnerability VCID-hakk-r7f8-3fhg
27
vulnerability VCID-hrpp-29gt-1kap
28
vulnerability VCID-humm-nga7-hbe4
29
vulnerability VCID-jzk1-rp1c-yfc9
30
vulnerability VCID-k2ma-t35n-abha
31
vulnerability VCID-kjca-etjw-kbee
32
vulnerability VCID-krk3-7gbv-p3dd
33
vulnerability VCID-mdja-xssw-2fbq
34
vulnerability VCID-na68-jbdb-2bg9
35
vulnerability VCID-p2gb-esw8-3ya7
36
vulnerability VCID-ps8b-6s4z-57fx
37
vulnerability VCID-s8vm-j73f-d7g5
38
vulnerability VCID-swkc-45zu-jfce
39
vulnerability VCID-tnkm-6p9x-fuaa
40
vulnerability VCID-tyba-yxs8-7kgb
41
vulnerability VCID-v1qu-g63z-eqfp
42
vulnerability VCID-v9eq-8h8q-f7gb
43
vulnerability VCID-vcbt-ta48-vybq
44
vulnerability VCID-vm94-wdga-rqdc
45
vulnerability VCID-wmvt-9z94-qkak
46
vulnerability VCID-xc11-sr2y-m3dj
47
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6
aliases CVE-2019-11832, GHSA-3w4h-r27h-4r2w
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hz11-99wt-fugr
23
url VCID-k2ma-t35n-abha
vulnerability_id VCID-k2ma-t35n-abha
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-21355
reference_id
reference_type
scores
0
value 0.00416
scoring_system epss
scoring_elements 0.62172
published_at 2026-06-11T12:55:00Z
1
value 0.00416
scoring_system epss
scoring_elements 0.62274
published_at 2026-06-12T12:55:00Z
2
value 0.00416
scoring_system epss
scoring_elements 0.62285
published_at 2026-06-13T12:55:00Z
3
value 0.00416
scoring_system epss
scoring_elements 0.6228
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-21355
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21355.yaml
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L/E:F/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21355.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21355.yaml
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L/E:F/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21355.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-2r6j-862c-m2v2
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L/E:F/RL:O/RC:C
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-2r6j-862c-m2v2
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-21355
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L/E:F/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-21355
5
reference_url https://packagist.org/packages/typo3/cms-form
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L/E:F/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-form
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-002
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L/E:F/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-002
7
reference_url https://github.com/advisories/GHSA-2r6j-862c-m2v2
reference_id GHSA-2r6j-862c-m2v2
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-2r6j-862c-m2v2
fixed_packages
0
url pkg:composer/typo3/cms@8.7.40
purl pkg:composer/typo3/cms@8.7.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dehe-pf1a-4ugh
1
vulnerability VCID-tnkm-6p9x-fuaa
2
vulnerability VCID-v9eq-8h8q-f7gb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.40
1
url pkg:composer/typo3/cms@9.5.25
purl pkg:composer/typo3/cms@9.5.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tnkm-6p9x-fuaa
8
vulnerability VCID-tyba-yxs8-7kgb
9
vulnerability VCID-v9eq-8h8q-f7gb
10
vulnerability VCID-vcbt-ta48-vybq
11
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.25
2
url pkg:composer/typo3/cms@10.4.14
purl pkg:composer/typo3/cms@10.4.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-dehe-pf1a-4ugh
10
vulnerability VCID-fajx-7vk2-yfd4
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-p2gb-esw8-3ya7
13
vulnerability VCID-rmxx-e239-5uf8
14
vulnerability VCID-tnkm-6p9x-fuaa
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-v9eq-8h8q-f7gb
19
vulnerability VCID-vcbt-ta48-vybq
20
vulnerability VCID-ws7p-gwph-4khc
21
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14
3
url pkg:composer/typo3/cms@11.1.1
purl pkg:composer/typo3/cms@11.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-cmzk-5bm5-hbep
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tnkm-6p9x-fuaa
16
vulnerability VCID-tyba-yxs8-7kgb
17
vulnerability VCID-uspd-tbez-gbht
18
vulnerability VCID-v1kq-a6wk-bka9
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-ws7p-gwph-4khc
22
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1
aliases CVE-2021-21355, GHSA-2r6j-862c-m2v2
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k2ma-t35n-abha
24
url VCID-kjca-etjw-kbee
vulnerability_id VCID-kjca-etjw-kbee
summary TYPO3 Cross-Site Scripting in Link Handling
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-2.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-2.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/25f796b94e23bac77e836bd38f53ce998c094901
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/25f796b94e23bac77e836bd38f53ce998c094901
3
reference_url https://github.com/TYPO3/typo3/commit/64db88b9b61bb67b3b44145dc8e0e1ef251da45e
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/64db88b9b61bb67b3b44145dc8e0e1ef251da45e
4
reference_url https://github.com/TYPO3/typo3/commit/a35c42e9bcb020e16016d1c146354513a9856bc0
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/a35c42e9bcb020e16016d1c146354513a9856bc0
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-022
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-022
6
reference_url https://github.com/advisories/GHSA-xgmx-j3hv-jh9x
reference_id GHSA-xgmx-j3hv-jh9x
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xgmx-j3hv-jh9x
fixed_packages
0
url pkg:composer/typo3/cms@8.7.30
purl pkg:composer/typo3/cms@8.7.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-9guq-muyz-uke8
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-wmvt-9z94-qkak
15
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30
1
url pkg:composer/typo3/cms@9.5.12
purl pkg:composer/typo3/cms@9.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-7b93-yrbc-pudn
3
vulnerability VCID-8rgn-8qf5-ckf9
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-abwf-mjxx-xka8
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-dehe-pf1a-4ugh
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-gpfs-y5yk-8fad
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-jzk1-rp1c-yfc9
13
vulnerability VCID-k2ma-t35n-abha
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-ps8b-6s4z-57fx
16
vulnerability VCID-s8vm-j73f-d7g5
17
vulnerability VCID-swkc-45zu-jfce
18
vulnerability VCID-tnkm-6p9x-fuaa
19
vulnerability VCID-tyba-yxs8-7kgb
20
vulnerability VCID-ut55-j7gh-3bgt
21
vulnerability VCID-v9eq-8h8q-f7gb
22
vulnerability VCID-vcbt-ta48-vybq
23
vulnerability VCID-vm94-wdga-rqdc
24
vulnerability VCID-wmvt-9z94-qkak
25
vulnerability VCID-xc11-sr2y-m3dj
26
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12
2
url pkg:composer/typo3/cms@10.2.1
purl pkg:composer/typo3/cms@10.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-4ntq-jdtt-7fad
3
vulnerability VCID-4xzz-vmc7-juh8
4
vulnerability VCID-5ddb-qvu6-c7dd
5
vulnerability VCID-66qa-16we-wkdw
6
vulnerability VCID-6g94-zrcc-mqf2
7
vulnerability VCID-7b93-yrbc-pudn
8
vulnerability VCID-8rgn-8qf5-ckf9
9
vulnerability VCID-91ky-rf6s-mudv
10
vulnerability VCID-9ce2-hvqa-97c5
11
vulnerability VCID-9guq-muyz-uke8
12
vulnerability VCID-9kzb-yw93-rqd3
13
vulnerability VCID-abwf-mjxx-xka8
14
vulnerability VCID-cmzk-5bm5-hbep
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-fajx-7vk2-yfd4
18
vulnerability VCID-gpfs-y5yk-8fad
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-jzk1-rp1c-yfc9
21
vulnerability VCID-k2ma-t35n-abha
22
vulnerability VCID-p2gb-esw8-3ya7
23
vulnerability VCID-ps8b-6s4z-57fx
24
vulnerability VCID-rmxx-e239-5uf8
25
vulnerability VCID-rtza-c724-4kfr
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-swkc-45zu-jfce
28
vulnerability VCID-tnkm-6p9x-fuaa
29
vulnerability VCID-tyba-yxs8-7kgb
30
vulnerability VCID-uspd-tbez-gbht
31
vulnerability VCID-ut55-j7gh-3bgt
32
vulnerability VCID-v1kq-a6wk-bka9
33
vulnerability VCID-v6tr-29p5-tyaa
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-vm94-wdga-rqdc
37
vulnerability VCID-wmvt-9z94-qkak
38
vulnerability VCID-ws7p-gwph-4khc
39
vulnerability VCID-xc11-sr2y-m3dj
40
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1
aliases GHSA-xgmx-j3hv-jh9x
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kjca-etjw-kbee
25
url VCID-krk3-7gbv-p3dd
vulnerability_id VCID-krk3-7gbv-p3dd
summary Typo3 Arbitrary Code Execution and Cross-Site Scripting in Backend API
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-06-25-4.yaml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-06-25-4.yaml
1
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-019
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-019
2
reference_url https://github.com/advisories/GHSA-hww5-6x85-mc24
reference_id GHSA-hww5-6x85-mc24
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hww5-6x85-mc24
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GHSA-hww5-6x85-mc24
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-krk3-7gbv-p3dd
26
url VCID-mdja-xssw-2fbq
vulnerability_id VCID-mdja-xssw-2fbq
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-19849
reference_id
reference_type
scores
0
value 0.00746
scoring_system epss
scoring_elements 0.73508
published_at 2026-06-11T12:55:00Z
1
value 0.00746
scoring_system epss
scoring_elements 0.73582
published_at 2026-06-12T12:55:00Z
2
value 0.00746
scoring_system epss
scoring_elements 0.73597
published_at 2026-06-13T12:55:00Z
3
value 0.00746
scoring_system epss
scoring_elements 0.73595
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-19849
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19849.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19849.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19849.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19849.yaml
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-19849
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-19849
4
reference_url https://review.typo3.org/q/%2522Resolves:+%252389005%2522+topic:security
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://review.typo3.org/q/%2522Resolves:+%252389005%2522+topic:security
5
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-026
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-026
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-026/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-026/
7
reference_url https://github.com/advisories/GHSA-rcgc-4xfc-564v
reference_id GHSA-rcgc-4xfc-564v
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-rcgc-4xfc-564v
fixed_packages
0
url pkg:composer/typo3/cms@8.7.30
purl pkg:composer/typo3/cms@8.7.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-9guq-muyz-uke8
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-wmvt-9z94-qkak
15
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30
1
url pkg:composer/typo3/cms@9.5.12
purl pkg:composer/typo3/cms@9.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-7b93-yrbc-pudn
3
vulnerability VCID-8rgn-8qf5-ckf9
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-abwf-mjxx-xka8
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-dehe-pf1a-4ugh
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-gpfs-y5yk-8fad
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-jzk1-rp1c-yfc9
13
vulnerability VCID-k2ma-t35n-abha
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-ps8b-6s4z-57fx
16
vulnerability VCID-s8vm-j73f-d7g5
17
vulnerability VCID-swkc-45zu-jfce
18
vulnerability VCID-tnkm-6p9x-fuaa
19
vulnerability VCID-tyba-yxs8-7kgb
20
vulnerability VCID-ut55-j7gh-3bgt
21
vulnerability VCID-v9eq-8h8q-f7gb
22
vulnerability VCID-vcbt-ta48-vybq
23
vulnerability VCID-vm94-wdga-rqdc
24
vulnerability VCID-wmvt-9z94-qkak
25
vulnerability VCID-xc11-sr2y-m3dj
26
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12
2
url pkg:composer/typo3/cms@10.2.1
purl pkg:composer/typo3/cms@10.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-4ntq-jdtt-7fad
3
vulnerability VCID-4xzz-vmc7-juh8
4
vulnerability VCID-5ddb-qvu6-c7dd
5
vulnerability VCID-66qa-16we-wkdw
6
vulnerability VCID-6g94-zrcc-mqf2
7
vulnerability VCID-7b93-yrbc-pudn
8
vulnerability VCID-8rgn-8qf5-ckf9
9
vulnerability VCID-91ky-rf6s-mudv
10
vulnerability VCID-9ce2-hvqa-97c5
11
vulnerability VCID-9guq-muyz-uke8
12
vulnerability VCID-9kzb-yw93-rqd3
13
vulnerability VCID-abwf-mjxx-xka8
14
vulnerability VCID-cmzk-5bm5-hbep
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-fajx-7vk2-yfd4
18
vulnerability VCID-gpfs-y5yk-8fad
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-jzk1-rp1c-yfc9
21
vulnerability VCID-k2ma-t35n-abha
22
vulnerability VCID-p2gb-esw8-3ya7
23
vulnerability VCID-ps8b-6s4z-57fx
24
vulnerability VCID-rmxx-e239-5uf8
25
vulnerability VCID-rtza-c724-4kfr
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-swkc-45zu-jfce
28
vulnerability VCID-tnkm-6p9x-fuaa
29
vulnerability VCID-tyba-yxs8-7kgb
30
vulnerability VCID-uspd-tbez-gbht
31
vulnerability VCID-ut55-j7gh-3bgt
32
vulnerability VCID-v1kq-a6wk-bka9
33
vulnerability VCID-v6tr-29p5-tyaa
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-vm94-wdga-rqdc
37
vulnerability VCID-wmvt-9z94-qkak
38
vulnerability VCID-ws7p-gwph-4khc
39
vulnerability VCID-xc11-sr2y-m3dj
40
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1
3
url pkg:composer/typo3/cms@10.2.2
purl pkg:composer/typo3/cms@10.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-4ntq-jdtt-7fad
3
vulnerability VCID-4xzz-vmc7-juh8
4
vulnerability VCID-5ddb-qvu6-c7dd
5
vulnerability VCID-66qa-16we-wkdw
6
vulnerability VCID-6g94-zrcc-mqf2
7
vulnerability VCID-7b93-yrbc-pudn
8
vulnerability VCID-8rgn-8qf5-ckf9
9
vulnerability VCID-91ky-rf6s-mudv
10
vulnerability VCID-9ce2-hvqa-97c5
11
vulnerability VCID-9guq-muyz-uke8
12
vulnerability VCID-9kzb-yw93-rqd3
13
vulnerability VCID-abwf-mjxx-xka8
14
vulnerability VCID-cmzk-5bm5-hbep
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-fajx-7vk2-yfd4
18
vulnerability VCID-gpfs-y5yk-8fad
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-jzk1-rp1c-yfc9
21
vulnerability VCID-k2ma-t35n-abha
22
vulnerability VCID-p2gb-esw8-3ya7
23
vulnerability VCID-ps8b-6s4z-57fx
24
vulnerability VCID-rmxx-e239-5uf8
25
vulnerability VCID-rtza-c724-4kfr
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-swkc-45zu-jfce
28
vulnerability VCID-tnkm-6p9x-fuaa
29
vulnerability VCID-tyba-yxs8-7kgb
30
vulnerability VCID-uspd-tbez-gbht
31
vulnerability VCID-ut55-j7gh-3bgt
32
vulnerability VCID-v1kq-a6wk-bka9
33
vulnerability VCID-v6tr-29p5-tyaa
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-vm94-wdga-rqdc
37
vulnerability VCID-wmvt-9z94-qkak
38
vulnerability VCID-ws7p-gwph-4khc
39
vulnerability VCID-xc11-sr2y-m3dj
40
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2
aliases CVE-2019-19849, GHSA-rcgc-4xfc-564v
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mdja-xssw-2fbq
27
url VCID-na68-jbdb-2bg9
vulnerability_id VCID-na68-jbdb-2bg9
summary 
Cross-site Scripting
Cross-Site Scripting in Link Handling.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-015/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-015/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.27
purl pkg:composer/typo3/cms@8.7.27
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-dehe-pf1a-4ugh
7
vulnerability VCID-fajx-7vk2-yfd4
8
vulnerability VCID-gagg-ngrt-sqe3
9
vulnerability VCID-hakk-r7f8-3fhg
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-k2ma-t35n-abha
12
vulnerability VCID-kjca-etjw-kbee
13
vulnerability VCID-mdja-xssw-2fbq
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-s8vm-j73f-d7g5
16
vulnerability VCID-tnkm-6p9x-fuaa
17
vulnerability VCID-tyba-yxs8-7kgb
18
vulnerability VCID-v1qu-g63z-eqfp
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-wmvt-9z94-qkak
22
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27
1
url pkg:composer/typo3/cms@9.5.8
purl pkg:composer/typo3/cms@9.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-3qs5-756e-1kdk
4
vulnerability VCID-7b93-yrbc-pudn
5
vulnerability VCID-8rgn-8qf5-ckf9
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-abwf-mjxx-xka8
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-gagg-ngrt-sqe3
13
vulnerability VCID-gpfs-y5yk-8fad
14
vulnerability VCID-hakk-r7f8-3fhg
15
vulnerability VCID-humm-nga7-hbe4
16
vulnerability VCID-jzk1-rp1c-yfc9
17
vulnerability VCID-k2ma-t35n-abha
18
vulnerability VCID-kjca-etjw-kbee
19
vulnerability VCID-mdja-xssw-2fbq
20
vulnerability VCID-p2gb-esw8-3ya7
21
vulnerability VCID-ps8b-6s4z-57fx
22
vulnerability VCID-s8vm-j73f-d7g5
23
vulnerability VCID-swkc-45zu-jfce
24
vulnerability VCID-tnkm-6p9x-fuaa
25
vulnerability VCID-tyba-yxs8-7kgb
26
vulnerability VCID-v1qu-g63z-eqfp
27
vulnerability VCID-v9eq-8h8q-f7gb
28
vulnerability VCID-vcbt-ta48-vybq
29
vulnerability VCID-vm94-wdga-rqdc
30
vulnerability VCID-wmvt-9z94-qkak
31
vulnerability VCID-xc11-sr2y-m3dj
32
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8
aliases GMS-2019-186
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-na68-jbdb-2bg9
28
url VCID-p2gb-esw8-3ya7
vulnerability_id VCID-p2gb-esw8-3ya7
summary TYPO3 is a free and open source Content Management Framework released under the GNU General Public License. In affected versions the TYPO3 core component `GeneralUtility::getIndpEnv()` uses the unfiltered server environment variable `PATH_INFO`, which allows attackers to inject malicious content. In combination with the TypoScript setting `config.absRefPrefix=auto`, attackers can inject malicious HTML code to pages that have not been rendered and cached, yet. As a result, injected values would be cached and delivered to other website visitors (persisted cross-site scripting). Individual code which relies on the resolved value of `GeneralUtility::getIndpEnv('SCRIPT_NAME')` and corresponding usages (as shown below) are vulnerable as well. Additional investigations confirmed that at least Apache web server deployments using CGI (FPM, FCGI/FastCGI, and similar) are affected. However, there still might be the risk that other scenarios like nginx, IIS, or Apache/mod_php are vulnerable. The usage of server environment variable `PATH_INFO` has been removed from corresponding processings in `GeneralUtility::getIndpEnv()`. Besides that, the public property `TypoScriptFrontendController::$absRefPrefix` is encoded for both being used as a URI component and for being used as a prefix in an HTML context. This mitigates the cross-site scripting vulnerability. Users are advised to update to TYPO3 versions 8.7.51 ELTS, 9.5.40 ELTS, 10.4.35 LTS, 11.5.23 LTS and 12.2.0 which fix this problem. For users who are unable to patch in a timely manner the TypoScript setting `config.absRefPrefix` should at least be set to a static path value, instead of using auto - e.g. `config.absRefPrefix=/`. This workaround **does not fix all aspects of the vulnerability**, and is just considered to be an intermediate mitigation to the most prominent manifestation.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-24814
reference_id
reference_type
scores
0
value 0.00867
scoring_system epss
scoring_elements 0.7568
published_at 2026-06-13T12:55:00Z
1
value 0.00867
scoring_system epss
scoring_elements 0.75675
published_at 2026-06-14T12:55:00Z
2
value 0.00867
scoring_system epss
scoring_elements 0.75597
published_at 2026-06-11T12:55:00Z
3
value 0.00867
scoring_system epss
scoring_elements 0.75667
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-24814
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2023-24814.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2023-24814.yaml
2
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-24814
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-24814
4
reference_url https://github.com/TYPO3/typo3/commit/0005a6fd86ab97eff8bf2e3a5828bf0e7cb6263a
reference_id 0005a6fd86ab97eff8bf2e3a5828bf0e7cb6263a
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:01:14Z/
url https://github.com/TYPO3/typo3/commit/0005a6fd86ab97eff8bf2e3a5828bf0e7cb6263a
5
reference_url https://github.com/TYPO3/typo3/blob/v11.5.22/typo3/sysext/core/Classes/Utility/GeneralUtility.php#L2481-L2484
reference_id GeneralUtility.php#L2481-L2484
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:01:14Z/
url https://github.com/TYPO3/typo3/blob/v11.5.22/typo3/sysext/core/Classes/Utility/GeneralUtility.php#L2481-L2484
6
reference_url https://github.com/advisories/GHSA-r4f8-f93x-5qh3
reference_id GHSA-r4f8-f93x-5qh3
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-r4f8-f93x-5qh3
7
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-r4f8-f93x-5qh3
reference_id GHSA-r4f8-f93x-5qh3
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:01:14Z/
url https://github.com/TYPO3/typo3/security/advisories/GHSA-r4f8-f93x-5qh3
8
reference_url https://docs.typo3.org/m/typo3/reference-typoscript/main/en-us/Setup/Config/Index.html#absrefprefix
reference_id Index.html#absrefprefix
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:01:14Z/
url https://docs.typo3.org/m/typo3/reference-typoscript/main/en-us/Setup/Config/Index.html#absrefprefix
9
reference_url https://typo3.org/security/advisory/typo3-core-sa-2023-001
reference_id typo3-core-sa-2023-001
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:01:14Z/
url https://typo3.org/security/advisory/typo3-core-sa-2023-001
10
reference_url https://typo3.org/security/advisory/typo3-psa-2023-001
reference_id typo3-psa-2023-001
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:01:14Z/
url https://typo3.org/security/advisory/typo3-psa-2023-001
11
reference_url https://github.com/TYPO3/typo3/blob/v11.5.22/typo3/sysext/frontend/Classes/Controller/TypoScriptFrontendController.php#L2547-L2549
reference_id TypoScriptFrontendController.php#L2547-L2549
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:01:14Z/
url https://github.com/TYPO3/typo3/blob/v11.5.22/typo3/sysext/frontend/Classes/Controller/TypoScriptFrontendController.php#L2547-L2549
fixed_packages
0
url pkg:composer/typo3/cms@10.4.35
purl pkg:composer/typo3/cms@10.4.35
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.35
1
url pkg:composer/typo3/cms@10.4.36
purl pkg:composer/typo3/cms@10.4.36
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.36
2
url pkg:composer/typo3/cms@11.5.23
purl pkg:composer/typo3/cms@11.5.23
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.23
3
url pkg:composer/typo3/cms@12.2.0
purl pkg:composer/typo3/cms@12.2.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@12.2.0
aliases CVE-2023-24814, GHSA-r4f8-f93x-5qh3
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p2gb-esw8-3ya7
29
url VCID-s8vm-j73f-d7g5
vulnerability_id VCID-s8vm-j73f-d7g5
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-21370
reference_id
reference_type
scores
0
value 0.00342
scoring_system epss
scoring_elements 0.57238
published_at 2026-06-11T12:55:00Z
1
value 0.00342
scoring_system epss
scoring_elements 0.57356
published_at 2026-06-12T12:55:00Z
2
value 0.00342
scoring_system epss
scoring_elements 0.57371
published_at 2026-06-13T12:55:00Z
3
value 0.00342
scoring_system epss
scoring_elements 0.57363
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-21370
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21370.yaml
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21370.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21370.yaml
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21370.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-x7hc-x7fm-f7qh
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-x7hc-x7fm-f7qh
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-21370
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-21370
5
reference_url https://packagist.org/packages/typo3/cms-backend
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-backend
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-008
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-008
7
reference_url https://github.com/advisories/GHSA-x7hc-x7fm-f7qh
reference_id GHSA-x7hc-x7fm-f7qh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-x7hc-x7fm-f7qh
fixed_packages
0
url pkg:composer/typo3/cms@8.7.40
purl pkg:composer/typo3/cms@8.7.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dehe-pf1a-4ugh
1
vulnerability VCID-tnkm-6p9x-fuaa
2
vulnerability VCID-v9eq-8h8q-f7gb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.40
1
url pkg:composer/typo3/cms@9.5.25
purl pkg:composer/typo3/cms@9.5.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tnkm-6p9x-fuaa
8
vulnerability VCID-tyba-yxs8-7kgb
9
vulnerability VCID-v9eq-8h8q-f7gb
10
vulnerability VCID-vcbt-ta48-vybq
11
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.25
2
url pkg:composer/typo3/cms@10.4.14
purl pkg:composer/typo3/cms@10.4.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-dehe-pf1a-4ugh
10
vulnerability VCID-fajx-7vk2-yfd4
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-p2gb-esw8-3ya7
13
vulnerability VCID-rmxx-e239-5uf8
14
vulnerability VCID-tnkm-6p9x-fuaa
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-v9eq-8h8q-f7gb
19
vulnerability VCID-vcbt-ta48-vybq
20
vulnerability VCID-ws7p-gwph-4khc
21
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14
3
url pkg:composer/typo3/cms@11.1.1
purl pkg:composer/typo3/cms@11.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-cmzk-5bm5-hbep
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tnkm-6p9x-fuaa
16
vulnerability VCID-tyba-yxs8-7kgb
17
vulnerability VCID-uspd-tbez-gbht
18
vulnerability VCID-v1kq-a6wk-bka9
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-ws7p-gwph-4khc
22
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1
aliases CVE-2021-21370, GHSA-x7hc-x7fm-f7qh
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s8vm-j73f-d7g5
30
url VCID-s9cv-hf49-9ydp
vulnerability_id VCID-s9cv-hf49-9ydp
summary Typo3 Security Misconfiguration in User Session Handling
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-05-07-2.yaml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-05-07-2.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-011
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-011
3
reference_url https://github.com/advisories/GHSA-g9rv-6g56-65h8
reference_id GHSA-g9rv-6g56-65h8
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-g9rv-6g56-65h8
fixed_packages
0
url pkg:composer/typo3/cms@8.7.25
purl pkg:composer/typo3/cms@8.7.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-96dm-8f1m-nfdz
12
vulnerability VCID-9guq-muyz-uke8
13
vulnerability VCID-d7rj-6q7r-dug5
14
vulnerability VCID-dehe-pf1a-4ugh
15
vulnerability VCID-f21e-8r3b-6ybn
16
vulnerability VCID-fajx-7vk2-yfd4
17
vulnerability VCID-gagg-ngrt-sqe3
18
vulnerability VCID-hakk-r7f8-3fhg
19
vulnerability VCID-humm-nga7-hbe4
20
vulnerability VCID-k2ma-t35n-abha
21
vulnerability VCID-kjca-etjw-kbee
22
vulnerability VCID-krk3-7gbv-p3dd
23
vulnerability VCID-mdja-xssw-2fbq
24
vulnerability VCID-na68-jbdb-2bg9
25
vulnerability VCID-p2gb-esw8-3ya7
26
vulnerability VCID-s8vm-j73f-d7g5
27
vulnerability VCID-tnkm-6p9x-fuaa
28
vulnerability VCID-tyba-yxs8-7kgb
29
vulnerability VCID-v1qu-g63z-eqfp
30
vulnerability VCID-v9eq-8h8q-f7gb
31
vulnerability VCID-vcbt-ta48-vybq
32
vulnerability VCID-wmvt-9z94-qkak
33
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25
1
url pkg:composer/typo3/cms@9.5.6
purl pkg:composer/typo3/cms@9.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5fnk-4u4b-hbhs
8
vulnerability VCID-5z2r-ryxu-6bhs
9
vulnerability VCID-5zge-smza-eqfe
10
vulnerability VCID-65zk-rvrr-7qhv
11
vulnerability VCID-7b93-yrbc-pudn
12
vulnerability VCID-8rgn-8qf5-ckf9
13
vulnerability VCID-96dm-8f1m-nfdz
14
vulnerability VCID-9guq-muyz-uke8
15
vulnerability VCID-9kzb-yw93-rqd3
16
vulnerability VCID-abwf-mjxx-xka8
17
vulnerability VCID-d7rj-6q7r-dug5
18
vulnerability VCID-dehe-pf1a-4ugh
19
vulnerability VCID-ekhn-mqrw-uudd
20
vulnerability VCID-f21e-8r3b-6ybn
21
vulnerability VCID-fajx-7vk2-yfd4
22
vulnerability VCID-gagg-ngrt-sqe3
23
vulnerability VCID-gcxn-d8pt-bkbx
24
vulnerability VCID-gh3r-b7t4-b7g2
25
vulnerability VCID-gpfs-y5yk-8fad
26
vulnerability VCID-hakk-r7f8-3fhg
27
vulnerability VCID-hrpp-29gt-1kap
28
vulnerability VCID-humm-nga7-hbe4
29
vulnerability VCID-jzk1-rp1c-yfc9
30
vulnerability VCID-k2ma-t35n-abha
31
vulnerability VCID-kjca-etjw-kbee
32
vulnerability VCID-krk3-7gbv-p3dd
33
vulnerability VCID-mdja-xssw-2fbq
34
vulnerability VCID-na68-jbdb-2bg9
35
vulnerability VCID-p2gb-esw8-3ya7
36
vulnerability VCID-ps8b-6s4z-57fx
37
vulnerability VCID-s8vm-j73f-d7g5
38
vulnerability VCID-swkc-45zu-jfce
39
vulnerability VCID-tnkm-6p9x-fuaa
40
vulnerability VCID-tyba-yxs8-7kgb
41
vulnerability VCID-v1qu-g63z-eqfp
42
vulnerability VCID-v9eq-8h8q-f7gb
43
vulnerability VCID-vcbt-ta48-vybq
44
vulnerability VCID-vm94-wdga-rqdc
45
vulnerability VCID-wmvt-9z94-qkak
46
vulnerability VCID-xc11-sr2y-m3dj
47
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6
aliases GHSA-g9rv-6g56-65h8
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s9cv-hf49-9ydp
31
url VCID-tnkm-6p9x-fuaa
vulnerability_id VCID-tnkm-6p9x-fuaa
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-32767
reference_id
reference_type
scores
0
value 0.00327
scoring_system epss
scoring_elements 0.56037
published_at 2026-06-11T12:55:00Z
1
value 0.00327
scoring_system epss
scoring_elements 0.56157
published_at 2026-06-12T12:55:00Z
2
value 0.00327
scoring_system epss
scoring_elements 0.56171
published_at 2026-06-13T12:55:00Z
3
value 0.00327
scoring_system epss
scoring_elements 0.56159
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-32767
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32767.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32767.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32767.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32767.yaml
3
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
4
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-34fr-fhqr-7235
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-34fr-fhqr-7235
5
reference_url https://github.com/TYPO3/typo3/commit/0b4950163b8919451964133febc65bcdfcec721c
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/0b4950163b8919451964133febc65bcdfcec721c
6
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-34fr-fhqr-7235
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/security/advisories/GHSA-34fr-fhqr-7235
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-32767
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-32767
8
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-012
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-012
9
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-013
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-013
10
reference_url https://github.com/advisories/GHSA-34fr-fhqr-7235
reference_id GHSA-34fr-fhqr-7235
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-34fr-fhqr-7235
fixed_packages
0
url pkg:composer/typo3/cms@9.5.28
purl pkg:composer/typo3/cms@9.5.28
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tyba-yxs8-7kgb
8
vulnerability VCID-v9eq-8h8q-f7gb
9
vulnerability VCID-vcbt-ta48-vybq
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.28
1
url pkg:composer/typo3/cms@10.4.18
purl pkg:composer/typo3/cms@10.4.18
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-p2gb-esw8-3ya7
12
vulnerability VCID-rmxx-e239-5uf8
13
vulnerability VCID-tyba-yxs8-7kgb
14
vulnerability VCID-uspd-tbez-gbht
15
vulnerability VCID-v1kq-a6wk-bka9
16
vulnerability VCID-vcbt-ta48-vybq
17
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.18
2
url pkg:composer/typo3/cms@11.3.1
purl pkg:composer/typo3/cms@11.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-axcy-s1kz-3fdv
9
vulnerability VCID-cmzk-5bm5-hbep
10
vulnerability VCID-d7rj-6q7r-dug5
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-vcbt-ta48-vybq
19
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.1
aliases CVE-2021-32767, GHSA-34fr-fhqr-7235
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tnkm-6p9x-fuaa
32
url VCID-tyba-yxs8-7kgb
vulnerability_id VCID-tyba-yxs8-7kgb
summary TYPO3 is an open source PHP based web content management system. Versions prior to 8.7.49, 9.5.38, 10.4.33, 11.5.20, and 12.1.1 are vulnerable to Code Injection. Due to the lack of separating user-submitted data from the internal configuration in the Form Designer backend module, it is possible to inject code instructions to be processed and executed via TypoScript as PHP code. The existence of individual TypoScript instructions for a particular form item and a valid backend user account with access to the form module are needed to exploit this vulnerability. This issue is patched in versions 8.7.49 ELTS, 9.5.38 ELTS, 10.4.33, 11.5.20, 12.1.1.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-23503
reference_id
reference_type
scores
0
value 0.00483
scoring_system epss
scoring_elements 0.65776
published_at 2026-06-14T12:55:00Z
1
value 0.00483
scoring_system epss
scoring_elements 0.65668
published_at 2026-06-11T12:55:00Z
2
value 0.00483
scoring_system epss
scoring_elements 0.6578
published_at 2026-06-13T12:55:00Z
3
value 0.00483
scoring_system epss
scoring_elements 0.65765
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-23503
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-23503.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-23503.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-23503.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-23503.yaml
3
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
4
reference_url https://github.com/TYPO3/typo3/commit/1302e88565821f2159e08b5d818d28de17ecc830
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/1302e88565821f2159e08b5d818d28de17ecc830
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-23503
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-23503
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2022-015
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2022-015
7
reference_url https://github.com/advisories/GHSA-c5wx-6c2c-f7rm
reference_id GHSA-c5wx-6c2c-f7rm
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-c5wx-6c2c-f7rm
8
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-c5wx-6c2c-f7rm
reference_id GHSA-c5wx-6c2c-f7rm
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-18T18:23:57Z/
url https://github.com/TYPO3/typo3/security/advisories/GHSA-c5wx-6c2c-f7rm
fixed_packages
0
url pkg:composer/typo3/cms@10.4.33
purl pkg:composer/typo3/cms@10.4.33
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-p2gb-esw8-3ya7
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.33
1
url pkg:composer/typo3/cms@11.5.20
purl pkg:composer/typo3/cms@11.5.20
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-p2gb-esw8-3ya7
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.20
2
url pkg:composer/typo3/cms@12.1.1
purl pkg:composer/typo3/cms@12.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-p2gb-esw8-3ya7
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@12.1.1
aliases CVE-2022-23503, GHSA-c5wx-6c2c-f7rm, GMS-2022-8132
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tyba-yxs8-7kgb
33
url VCID-v1qu-g63z-eqfp
vulnerability_id VCID-v1qu-g63z-eqfp
summary TYPO3 CMS Possible Insecure Deserialization in Extbase Request Handling
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-7.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-12-17-7.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/57e4ed35a6e58521a931855e702b2688b3bc3d62
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/57e4ed35a6e58521a931855e702b2688b3bc3d62
3
reference_url https://github.com/TYPO3/typo3/commit/b1626ad8fd4aebedc15e424a76f86094d78b2564
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/b1626ad8fd4aebedc15e424a76f86094d78b2564
4
reference_url https://typo3.org/security/advisory/typo3-psa-2019-011
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-psa-2019-011
5
reference_url https://github.com/advisories/GHSA-hh95-5xm5-v8v7
reference_id GHSA-hh95-5xm5-v8v7
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hh95-5xm5-v8v7
fixed_packages
0
url pkg:composer/typo3/cms@8.7.30
purl pkg:composer/typo3/cms@8.7.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-9guq-muyz-uke8
3
vulnerability VCID-d7rj-6q7r-dug5
4
vulnerability VCID-dehe-pf1a-4ugh
5
vulnerability VCID-fajx-7vk2-yfd4
6
vulnerability VCID-humm-nga7-hbe4
7
vulnerability VCID-k2ma-t35n-abha
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-s8vm-j73f-d7g5
10
vulnerability VCID-tnkm-6p9x-fuaa
11
vulnerability VCID-tyba-yxs8-7kgb
12
vulnerability VCID-v9eq-8h8q-f7gb
13
vulnerability VCID-vcbt-ta48-vybq
14
vulnerability VCID-wmvt-9z94-qkak
15
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30
1
url pkg:composer/typo3/cms@9.5.12
purl pkg:composer/typo3/cms@9.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1wqd-w75h-rbb1
1
vulnerability VCID-29c2-3qgd-tydb
2
vulnerability VCID-7b93-yrbc-pudn
3
vulnerability VCID-8rgn-8qf5-ckf9
4
vulnerability VCID-9guq-muyz-uke8
5
vulnerability VCID-9kzb-yw93-rqd3
6
vulnerability VCID-abwf-mjxx-xka8
7
vulnerability VCID-d7rj-6q7r-dug5
8
vulnerability VCID-dehe-pf1a-4ugh
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-gpfs-y5yk-8fad
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-jzk1-rp1c-yfc9
13
vulnerability VCID-k2ma-t35n-abha
14
vulnerability VCID-p2gb-esw8-3ya7
15
vulnerability VCID-ps8b-6s4z-57fx
16
vulnerability VCID-s8vm-j73f-d7g5
17
vulnerability VCID-swkc-45zu-jfce
18
vulnerability VCID-tnkm-6p9x-fuaa
19
vulnerability VCID-tyba-yxs8-7kgb
20
vulnerability VCID-ut55-j7gh-3bgt
21
vulnerability VCID-v9eq-8h8q-f7gb
22
vulnerability VCID-vcbt-ta48-vybq
23
vulnerability VCID-vm94-wdga-rqdc
24
vulnerability VCID-wmvt-9z94-qkak
25
vulnerability VCID-xc11-sr2y-m3dj
26
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12
aliases GHSA-hh95-5xm5-v8v7
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v1qu-g63z-eqfp
34
url VCID-v9eq-8h8q-f7gb
vulnerability_id VCID-v9eq-8h8q-f7gb
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-32668
reference_id
reference_type
scores
0
value 0.00364
scoring_system epss
scoring_elements 0.58839
published_at 2026-06-11T12:55:00Z
1
value 0.00364
scoring_system epss
scoring_elements 0.58951
published_at 2026-06-12T12:55:00Z
2
value 0.00364
scoring_system epss
scoring_elements 0.58962
published_at 2026-06-13T12:55:00Z
3
value 0.00364
scoring_system epss
scoring_elements 0.58952
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-32668
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32668.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-32668.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32668.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-32668.yaml
3
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
4
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-6mh3-j5r5-2379
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-6mh3-j5r5-2379
5
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-6mh3-j5r5-2379
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/security/advisories/GHSA-6mh3-j5r5-2379
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-32668
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-32668
7
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-010
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-010
8
reference_url https://github.com/advisories/GHSA-6mh3-j5r5-2379
reference_id GHSA-6mh3-j5r5-2379
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-6mh3-j5r5-2379
fixed_packages
0
url pkg:composer/typo3/cms@9.5.28
purl pkg:composer/typo3/cms@9.5.28
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tyba-yxs8-7kgb
8
vulnerability VCID-v9eq-8h8q-f7gb
9
vulnerability VCID-vcbt-ta48-vybq
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.28
1
url pkg:composer/typo3/cms@10.4.18
purl pkg:composer/typo3/cms@10.4.18
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-fajx-7vk2-yfd4
10
vulnerability VCID-humm-nga7-hbe4
11
vulnerability VCID-p2gb-esw8-3ya7
12
vulnerability VCID-rmxx-e239-5uf8
13
vulnerability VCID-tyba-yxs8-7kgb
14
vulnerability VCID-uspd-tbez-gbht
15
vulnerability VCID-v1kq-a6wk-bka9
16
vulnerability VCID-vcbt-ta48-vybq
17
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.18
2
url pkg:composer/typo3/cms@11.3.1
purl pkg:composer/typo3/cms@11.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-axcy-s1kz-3fdv
9
vulnerability VCID-cmzk-5bm5-hbep
10
vulnerability VCID-d7rj-6q7r-dug5
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-vcbt-ta48-vybq
19
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.1
aliases CVE-2021-32668, GHSA-6mh3-j5r5-2379
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v9eq-8h8q-f7gb
35
url VCID-vcbt-ta48-vybq
vulnerability_id VCID-vcbt-ta48-vybq
summary TYPO3 is an open source web content management system. Prior to versions 7.6.57 ELTS, 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, system internal credentials or keys (e.g. database credentials) can be logged as plaintext in exception handlers, when logging the complete exception stack trace. TYPO3 versions 7.6.57 ELTS, 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, 11.5.11 contain a fix for the problem.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-31047
reference_id
reference_type
scores
0
value 0.00391
scoring_system epss
scoring_elements 0.60569
published_at 2026-06-11T12:55:00Z
1
value 0.00391
scoring_system epss
scoring_elements 0.60676
published_at 2026-06-14T12:55:00Z
2
value 0.00391
scoring_system epss
scoring_elements 0.60685
published_at 2026-06-13T12:55:00Z
3
value 0.00391
scoring_system epss
scoring_elements 0.60674
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-31047
1
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
2
reference_url https://github.com/TYPO3/typo3/commit/c93ea692e7dfef03b7c50fe5437487545bee4d6a
reference_id c93ea692e7dfef03b7c50fe5437487545bee4d6a
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T14:05:23Z/
url https://github.com/TYPO3/typo3/commit/c93ea692e7dfef03b7c50fe5437487545bee4d6a
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-31047
reference_id CVE-2022-31047
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-31047
4
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-31047.yaml
reference_id CVE-2022-31047.YAML
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-31047.yaml
5
reference_url https://github.com/advisories/GHSA-fh99-4pgr-8j99
reference_id GHSA-fh99-4pgr-8j99
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fh99-4pgr-8j99
6
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-fh99-4pgr-8j99
reference_id GHSA-fh99-4pgr-8j99
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T14:05:23Z/
url https://github.com/TYPO3/typo3/security/advisories/GHSA-fh99-4pgr-8j99
7
reference_url https://typo3.org/security/advisory/typo3-core-sa-2022-002
reference_id typo3-core-sa-2022-002
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T14:05:23Z/
url https://typo3.org/security/advisory/typo3-core-sa-2022-002
fixed_packages
0
url pkg:composer/typo3/cms@10.4.29
purl pkg:composer/typo3/cms@10.4.29
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ddb-qvu6-c7dd
1
vulnerability VCID-66qa-16we-wkdw
2
vulnerability VCID-6g94-zrcc-mqf2
3
vulnerability VCID-9kzb-yw93-rqd3
4
vulnerability VCID-cmzk-5bm5-hbep
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-fajx-7vk2-yfd4
7
vulnerability VCID-humm-nga7-hbe4
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-tyba-yxs8-7kgb
10
vulnerability VCID-v1kq-a6wk-bka9
11
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.29
1
url pkg:composer/typo3/cms@11.5.11
purl pkg:composer/typo3/cms@11.5.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5ddb-qvu6-c7dd
1
vulnerability VCID-66qa-16we-wkdw
2
vulnerability VCID-6g94-zrcc-mqf2
3
vulnerability VCID-9kzb-yw93-rqd3
4
vulnerability VCID-cmzk-5bm5-hbep
5
vulnerability VCID-d7rj-6q7r-dug5
6
vulnerability VCID-fajx-7vk2-yfd4
7
vulnerability VCID-humm-nga7-hbe4
8
vulnerability VCID-p2gb-esw8-3ya7
9
vulnerability VCID-ra2c-x1g8-tyhy
10
vulnerability VCID-tyba-yxs8-7kgb
11
vulnerability VCID-v1kq-a6wk-bka9
12
vulnerability VCID-ws7p-gwph-4khc
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.11
aliases CVE-2022-31047, GHSA-fh99-4pgr-8j99
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vcbt-ta48-vybq
36
url VCID-wmvt-9z94-qkak
vulnerability_id VCID-wmvt-9z94-qkak
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-21357
reference_id
reference_type
scores
0
value 0.01121
scoring_system epss
scoring_elements 0.78658
published_at 2026-06-11T12:55:00Z
1
value 0.01121
scoring_system epss
scoring_elements 0.78724
published_at 2026-06-12T12:55:00Z
2
value 0.01121
scoring_system epss
scoring_elements 0.7874
published_at 2026-06-13T12:55:00Z
3
value 0.01121
scoring_system epss
scoring_elements 0.78736
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-21357
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21357.yaml
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H/E:H/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21357.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21357.yaml
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H/E:H/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21357.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-3vg7-jw9m-pc3f
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H/E:H/RL:O/RC:C
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-3vg7-jw9m-pc3f
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-21357
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H/E:H/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-21357
5
reference_url https://packagist.org/packages/typo3/cms-form
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H/E:H/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-form
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-003
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H/E:H/RL:O/RC:C
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-003
7
reference_url https://github.com/advisories/GHSA-3vg7-jw9m-pc3f
reference_id GHSA-3vg7-jw9m-pc3f
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3vg7-jw9m-pc3f
fixed_packages
0
url pkg:composer/typo3/cms@8.7.40
purl pkg:composer/typo3/cms@8.7.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dehe-pf1a-4ugh
1
vulnerability VCID-tnkm-6p9x-fuaa
2
vulnerability VCID-v9eq-8h8q-f7gb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.40
1
url pkg:composer/typo3/cms@9.5.25
purl pkg:composer/typo3/cms@9.5.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tnkm-6p9x-fuaa
8
vulnerability VCID-tyba-yxs8-7kgb
9
vulnerability VCID-v9eq-8h8q-f7gb
10
vulnerability VCID-vcbt-ta48-vybq
11
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.25
2
url pkg:composer/typo3/cms@10.4.14
purl pkg:composer/typo3/cms@10.4.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-dehe-pf1a-4ugh
10
vulnerability VCID-fajx-7vk2-yfd4
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-p2gb-esw8-3ya7
13
vulnerability VCID-rmxx-e239-5uf8
14
vulnerability VCID-tnkm-6p9x-fuaa
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-v9eq-8h8q-f7gb
19
vulnerability VCID-vcbt-ta48-vybq
20
vulnerability VCID-ws7p-gwph-4khc
21
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14
3
url pkg:composer/typo3/cms@11.1.1
purl pkg:composer/typo3/cms@11.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-cmzk-5bm5-hbep
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tnkm-6p9x-fuaa
16
vulnerability VCID-tyba-yxs8-7kgb
17
vulnerability VCID-uspd-tbez-gbht
18
vulnerability VCID-v1kq-a6wk-bka9
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-ws7p-gwph-4khc
22
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1
aliases CVE-2021-21357, GHSA-3vg7-jw9m-pc3f
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wmvt-9z94-qkak
37
url VCID-xwmd-vgye-aqhg
vulnerability_id VCID-xwmd-vgye-aqhg
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-21338
reference_id
reference_type
scores
0
value 0.00253
scoring_system epss
scoring_elements 0.48868
published_at 2026-06-11T12:55:00Z
1
value 0.00253
scoring_system epss
scoring_elements 0.49004
published_at 2026-06-12T12:55:00Z
2
value 0.00253
scoring_system epss
scoring_elements 0.49021
published_at 2026-06-13T12:55:00Z
3
value 0.00253
scoring_system epss
scoring_elements 0.49008
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-21338
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21338.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21338.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21338.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21338.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-4jhw-2p6j-5wmp
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-4jhw-2p6j-5wmp
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-21338
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-21338
5
reference_url https://packagist.org/packages/typo3/cms-core
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-core
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-001
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-001
7
reference_url https://github.com/advisories/GHSA-4jhw-2p6j-5wmp
reference_id GHSA-4jhw-2p6j-5wmp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4jhw-2p6j-5wmp
fixed_packages
0
url pkg:composer/typo3/cms@8.7.40
purl pkg:composer/typo3/cms@8.7.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dehe-pf1a-4ugh
1
vulnerability VCID-tnkm-6p9x-fuaa
2
vulnerability VCID-v9eq-8h8q-f7gb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.40
1
url pkg:composer/typo3/cms@9.5.25
purl pkg:composer/typo3/cms@9.5.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-9guq-muyz-uke8
1
vulnerability VCID-9kzb-yw93-rqd3
2
vulnerability VCID-d7rj-6q7r-dug5
3
vulnerability VCID-dehe-pf1a-4ugh
4
vulnerability VCID-fajx-7vk2-yfd4
5
vulnerability VCID-humm-nga7-hbe4
6
vulnerability VCID-p2gb-esw8-3ya7
7
vulnerability VCID-tnkm-6p9x-fuaa
8
vulnerability VCID-tyba-yxs8-7kgb
9
vulnerability VCID-v9eq-8h8q-f7gb
10
vulnerability VCID-vcbt-ta48-vybq
11
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.25
2
url pkg:composer/typo3/cms@10.4.14
purl pkg:composer/typo3/cms@10.4.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-9ce2-hvqa-97c5
5
vulnerability VCID-9guq-muyz-uke8
6
vulnerability VCID-9kzb-yw93-rqd3
7
vulnerability VCID-cmzk-5bm5-hbep
8
vulnerability VCID-d7rj-6q7r-dug5
9
vulnerability VCID-dehe-pf1a-4ugh
10
vulnerability VCID-fajx-7vk2-yfd4
11
vulnerability VCID-humm-nga7-hbe4
12
vulnerability VCID-p2gb-esw8-3ya7
13
vulnerability VCID-rmxx-e239-5uf8
14
vulnerability VCID-tnkm-6p9x-fuaa
15
vulnerability VCID-tyba-yxs8-7kgb
16
vulnerability VCID-uspd-tbez-gbht
17
vulnerability VCID-v1kq-a6wk-bka9
18
vulnerability VCID-v9eq-8h8q-f7gb
19
vulnerability VCID-vcbt-ta48-vybq
20
vulnerability VCID-ws7p-gwph-4khc
21
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14
3
url pkg:composer/typo3/cms@11.1.1
purl pkg:composer/typo3/cms@11.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4ntq-jdtt-7fad
1
vulnerability VCID-5ddb-qvu6-c7dd
2
vulnerability VCID-66qa-16we-wkdw
3
vulnerability VCID-6g94-zrcc-mqf2
4
vulnerability VCID-6hw1-db5m-8qgx
5
vulnerability VCID-9ce2-hvqa-97c5
6
vulnerability VCID-9guq-muyz-uke8
7
vulnerability VCID-9kzb-yw93-rqd3
8
vulnerability VCID-cmzk-5bm5-hbep
9
vulnerability VCID-d7rj-6q7r-dug5
10
vulnerability VCID-dehe-pf1a-4ugh
11
vulnerability VCID-fajx-7vk2-yfd4
12
vulnerability VCID-humm-nga7-hbe4
13
vulnerability VCID-p2gb-esw8-3ya7
14
vulnerability VCID-rmxx-e239-5uf8
15
vulnerability VCID-tnkm-6p9x-fuaa
16
vulnerability VCID-tyba-yxs8-7kgb
17
vulnerability VCID-uspd-tbez-gbht
18
vulnerability VCID-v1kq-a6wk-bka9
19
vulnerability VCID-v9eq-8h8q-f7gb
20
vulnerability VCID-vcbt-ta48-vybq
21
vulnerability VCID-ws7p-gwph-4khc
22
vulnerability VCID-xc11-sr2y-m3dj
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1
aliases CVE-2021-21338, GHSA-4jhw-2p6j-5wmp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xwmd-vgye-aqhg
Fixing_vulnerabilities
0
url VCID-1mcf-nvuw-3ucx
vulnerability_id VCID-1mcf-nvuw-3ucx
summary TYPO3 Broken Access Control in Localization Handling
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-3.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-3.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/5004201ee77a69cb825637bc95cdeedb1186f4d4
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/5004201ee77a69cb825637bc95cdeedb1186f4d4
3
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-003
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-003
4
reference_url https://github.com/advisories/GHSA-772m-43f3-hmf8
reference_id GHSA-772m-43f3-hmf8
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-772m-43f3-hmf8
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
aliases GHSA-772m-43f3-hmf8
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1mcf-nvuw-3ucx
1
url VCID-1wh7-k98x-akem
vulnerability_id VCID-1wh7-k98x-akem
summary 
Code Injection
Arbitrary Code Execution via File List Module.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-008/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-008/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GMS-2019-178
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1wh7-k98x-akem
2
url VCID-3uk8-3fmf-k7h3
vulnerability_id VCID-3uk8-3fmf-k7h3
summary Information Disclosure of Installed Extensions.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-001/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-001/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GMS-2019-172
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3uk8-3fmf-k7h3
3
url VCID-5dwd-8g96-k3em
vulnerability_id VCID-5dwd-8g96-k3em
summary Bootstrap Cross-site Scripting vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14041.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14041.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14041
reference_id
reference_type
scores
0
value 0.07723
scoring_system epss
scoring_elements 0.92149
published_at 2026-06-14T12:55:00Z
1
value 0.07723
scoring_system epss
scoring_elements 0.92152
published_at 2026-06-13T12:55:00Z
2
value 0.07723
scoring_system epss
scoring_elements 0.92146
published_at 2026-06-12T12:55:00Z
3
value 0.07723
scoring_system epss
scoring_elements 0.92119
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14041
2
reference_url https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements
1
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
3
reference_url https://github.com/twbs/bootstrap
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/twbs/bootstrap
4
reference_url https://github.com/twbs/bootstrap/issues/26423
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/twbs/bootstrap/issues/26423
5
reference_url https://github.com/twbs/bootstrap/issues/26627
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/twbs/bootstrap/issues/26627
6
reference_url https://github.com/twbs/bootstrap/pull/26630
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/twbs/bootstrap/pull/26630
7
reference_url https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E
8
reference_url https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@%3Cdev.superset.apache.org%3E
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@%3Cdev.superset.apache.org%3E
9
reference_url https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E
10
reference_url https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E
11
reference_url https://lists.apache.org/thread.html/r3dc0cac8d856bca02bd6997355d7ff83027dcfc82f8646a29b89b714@%3Cissues.hbase.apache.org%3E
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r3dc0cac8d856bca02bd6997355d7ff83027dcfc82f8646a29b89b714@%3Cissues.hbase.apache.org%3E
12
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-006
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-006
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1601616
reference_id 1601616
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1601616
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-14041
reference_id CVE-2018-14041
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-14041
15
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2018-14041.yaml
reference_id CVE-2018-14041.YAML
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2018-14041.yaml
16
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2018-14041.yaml
reference_id CVE-2018-14041.YAML
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2018-14041.yaml
17
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2018-14041.yml
reference_id CVE-2018-14041.YML
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2018-14041.yml
18
reference_url https://github.com/advisories/GHSA-pj7m-g53m-7638
reference_id GHSA-pj7m-g53m-7638
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-pj7m-g53m-7638
19
reference_url https://access.redhat.com/errata/RHSA-2019:1456
reference_id RHSA-2019:1456
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:1456
20
reference_url https://access.redhat.com/errata/RHSA-2023:0552
reference_id RHSA-2023:0552
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0552
21
reference_url https://access.redhat.com/errata/RHSA-2023:0553
reference_id RHSA-2023:0553
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0553
22
reference_url https://access.redhat.com/errata/RHSA-2023:0554
reference_id RHSA-2023:0554
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0554
23
reference_url https://access.redhat.com/errata/RHSA-2023:0556
reference_id RHSA-2023:0556
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0556
24
reference_url https://access.redhat.com/errata/RHSA-2023:5693
reference_id RHSA-2023:5693
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5693
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases CVE-2018-14041, GHSA-pj7m-g53m-7638
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5dwd-8g96-k3em
4
url VCID-5yeb-yk4p-kbg8
vulnerability_id VCID-5yeb-yk4p-kbg8
summary 
Cross-site Scripting
Cross-Site Scripting in Bootstrap CSS toolkit.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-006/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-006/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GMS-2019-176
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5yeb-yk4p-kbg8
5
url VCID-9wst-5ktz-ayf3
vulnerability_id VCID-9wst-5ktz-ayf3
summary 
Cross-site Scripting
Cross-Site Scripting in Form Framework.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-007/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-007/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GMS-2019-177
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9wst-5ktz-ayf3
6
url VCID-c55j-pdbd-kqca
vulnerability_id VCID-c55j-pdbd-kqca
summary TYPO3 Security Misconfiguration for Backend User Accounts
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-2.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-2.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/b3608d14e1915030cde272000a247cb6d5f982b8
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/b3608d14e1915030cde272000a247cb6d5f982b8
3
reference_url https://github.com/TYPO3/typo3/commit/e4d0cff40a4f8f597e52c20fff529e206bb62703
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/e4d0cff40a4f8f597e52c20fff529e206bb62703
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-002
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-002
5
reference_url https://github.com/advisories/GHSA-c5mj-39cf-3pp5
reference_id GHSA-c5mj-39cf-3pp5
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-c5mj-39cf-3pp5
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GHSA-c5mj-39cf-3pp5
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c55j-pdbd-kqca
7
url VCID-eqef-ds76-2bdz
vulnerability_id VCID-eqef-ds76-2bdz
summary TYPO3 Cross-Site Scripting in Fluid ViewHelpers
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-4.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-4.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/732c4acfaeaa7fd193674cd4d1ca7e369e21b96f
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/732c4acfaeaa7fd193674cd4d1ca7e369e21b96f
3
reference_url https://github.com/TYPO3/typo3/commit/c94f566514eaff62dd836541c99b438ac55f6842
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/c94f566514eaff62dd836541c99b438ac55f6842
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-005
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-005
5
reference_url https://github.com/advisories/GHSA-85ch-44w7-rf32
reference_id GHSA-85ch-44w7-rf32
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-85ch-44w7-rf32
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GHSA-85ch-44w7-rf32
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eqef-ds76-2bdz
8
url VCID-eqgg-dg5a-aufv
vulnerability_id VCID-eqgg-dg5a-aufv
summary TYPO3 Arbitrary Code Execution via File List Module
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-7.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-7.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/095ae4ab6869d0f7dc7befedb851cdd7ad0c7ebf
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/095ae4ab6869d0f7dc7befedb851cdd7ad0c7ebf
3
reference_url https://github.com/TYPO3/typo3/commit/9990278ce7cf8e4d6b8bf31edec6787722d38b0f
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/9990278ce7cf8e4d6b8bf31edec6787722d38b0f
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-008
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-008
5
reference_url https://github.com/advisories/GHSA-8h4m-r4wm-xj7r
reference_id GHSA-8h4m-r4wm-xj7r
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8h4m-r4wm-xj7r
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GHSA-8h4m-r4wm-xj7r
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eqgg-dg5a-aufv
9
url VCID-gccq-djjn-p3cj
vulnerability_id VCID-gccq-djjn-p3cj
summary TYPO3 Cross-Site Scripting in Form Framework
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-6.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-6.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/79528f75e23c2832db321f36d777c1427553f764
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/79528f75e23c2832db321f36d777c1427553f764
3
reference_url https://github.com/TYPO3/typo3/commit/a0c4348188559596f292ea03983171bde29d9870
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/a0c4348188559596f292ea03983171bde29d9870
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-007
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-007
5
reference_url https://github.com/advisories/GHSA-4h5c-5g25-v7fh
reference_id GHSA-4h5c-5g25-v7fh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4h5c-5g25-v7fh
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GHSA-4h5c-5g25-v7fh
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gccq-djjn-p3cj
10
url VCID-p697-h7v5-t3c3
vulnerability_id VCID-p697-h7v5-t3c3
summary Security Misconfiguration for Backend User Accounts.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-002/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-002/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GMS-2019-173
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p697-h7v5-t3c3
11
url VCID-tq8v-jtxu-dydw
vulnerability_id VCID-tq8v-jtxu-dydw
summary 
Improper Access Control
Broken Access Control in Localization Handling.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-003/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-003/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.0.0
purl pkg:composer/typo3/cms@9.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14rf-bzqm-6yee
1
vulnerability VCID-16jn-zmyr-tufh
2
vulnerability VCID-1c4y-8sd6-4khr
3
vulnerability VCID-1jgz-wh4c-gybx
4
vulnerability VCID-1tdx-n6at-xfdb
5
vulnerability VCID-1wh7-k98x-akem
6
vulnerability VCID-1wqd-w75h-rbb1
7
vulnerability VCID-1ze6-1fjd-x3cq
8
vulnerability VCID-29c2-3qgd-tydb
9
vulnerability VCID-32rm-6wes-2ydx
10
vulnerability VCID-3qs5-756e-1kdk
11
vulnerability VCID-3trr-dksg-fkbv
12
vulnerability VCID-3uk8-3fmf-k7h3
13
vulnerability VCID-4ssg-1vst-cyd3
14
vulnerability VCID-5dwd-8g96-k3em
15
vulnerability VCID-5ecx-y3p3-1qdq
16
vulnerability VCID-5fnk-4u4b-hbhs
17
vulnerability VCID-5yeb-yk4p-kbg8
18
vulnerability VCID-5z2r-ryxu-6bhs
19
vulnerability VCID-5zge-smza-eqfe
20
vulnerability VCID-65zk-rvrr-7qhv
21
vulnerability VCID-7b93-yrbc-pudn
22
vulnerability VCID-7g9y-zjcr-jbds
23
vulnerability VCID-7haq-hf25-3fhr
24
vulnerability VCID-8rgn-8qf5-ckf9
25
vulnerability VCID-96dm-8f1m-nfdz
26
vulnerability VCID-9guq-muyz-uke8
27
vulnerability VCID-9kzb-yw93-rqd3
28
vulnerability VCID-9wst-5ktz-ayf3
29
vulnerability VCID-9xdw-n2ct-nfam
30
vulnerability VCID-abwf-mjxx-xka8
31
vulnerability VCID-buwx-jmfw-nqey
32
vulnerability VCID-bxsu-up11-bqbb
33
vulnerability VCID-c4jh-rvd4-6fch
34
vulnerability VCID-c55j-pdbd-kqca
35
vulnerability VCID-d7rj-6q7r-dug5
36
vulnerability VCID-dehe-pf1a-4ugh
37
vulnerability VCID-e7sf-ja6j-57fg
38
vulnerability VCID-edud-3c8w-fyhv
39
vulnerability VCID-ekhn-mqrw-uudd
40
vulnerability VCID-eqef-ds76-2bdz
41
vulnerability VCID-eqgg-dg5a-aufv
42
vulnerability VCID-f21e-8r3b-6ybn
43
vulnerability VCID-fajx-7vk2-yfd4
44
vulnerability VCID-fj6w-9y1m-ubau
45
vulnerability VCID-g41t-nuwm-9uba
46
vulnerability VCID-gagg-ngrt-sqe3
47
vulnerability VCID-gccq-djjn-p3cj
48
vulnerability VCID-gcxn-d8pt-bkbx
49
vulnerability VCID-gh3r-b7t4-b7g2
50
vulnerability VCID-gpfs-y5yk-8fad
51
vulnerability VCID-hakk-r7f8-3fhg
52
vulnerability VCID-hmnr-cq8w-nqfu
53
vulnerability VCID-hrem-6gyf-kkb4
54
vulnerability VCID-hrpp-29gt-1kap
55
vulnerability VCID-humm-nga7-hbe4
56
vulnerability VCID-hz11-99wt-fugr
57
vulnerability VCID-jzk1-rp1c-yfc9
58
vulnerability VCID-k2ma-t35n-abha
59
vulnerability VCID-kjca-etjw-kbee
60
vulnerability VCID-krk3-7gbv-p3dd
61
vulnerability VCID-kvkn-pkry-x7ap
62
vulnerability VCID-mdja-xssw-2fbq
63
vulnerability VCID-mwxc-kfnc-gfgf
64
vulnerability VCID-na68-jbdb-2bg9
65
vulnerability VCID-nfpa-bfvt-dbg9
66
vulnerability VCID-nzb2-bdkk-b7bn
67
vulnerability VCID-p2gb-esw8-3ya7
68
vulnerability VCID-p697-h7v5-t3c3
69
vulnerability VCID-ps8b-6s4z-57fx
70
vulnerability VCID-qf1a-6b5w-pfay
71
vulnerability VCID-qxc5-jek3-gbem
72
vulnerability VCID-qz3t-d4ar-g7f1
73
vulnerability VCID-s8vm-j73f-d7g5
74
vulnerability VCID-s9cv-hf49-9ydp
75
vulnerability VCID-swkc-45zu-jfce
76
vulnerability VCID-tnkm-6p9x-fuaa
77
vulnerability VCID-tyba-yxs8-7kgb
78
vulnerability VCID-ut55-j7gh-3bgt
79
vulnerability VCID-v1qu-g63z-eqfp
80
vulnerability VCID-v9eq-8h8q-f7gb
81
vulnerability VCID-vcbt-ta48-vybq
82
vulnerability VCID-vk1n-7r2d-6qck
83
vulnerability VCID-vm94-wdga-rqdc
84
vulnerability VCID-vyeg-x88u-tbdp
85
vulnerability VCID-wmvt-9z94-qkak
86
vulnerability VCID-wr6j-87tp-uqa9
87
vulnerability VCID-wv8j-wv52-jkhw
88
vulnerability VCID-xc11-sr2y-m3dj
89
vulnerability VCID-xkeb-gerj-gqd5
90
vulnerability VCID-xuzm-16w7-xkct
91
vulnerability VCID-xwmd-vgye-aqhg
92
vulnerability VCID-yvea-ufv9-t3ds
93
vulnerability VCID-yxw8-b8gv-s7ct
94
vulnerability VCID-zwnu-fk9v-dbfz
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.0.0
aliases GMS-2019-174
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tq8v-jtxu-dydw
12
url VCID-wr6j-87tp-uqa9
vulnerability_id VCID-wr6j-87tp-uqa9
summary TYPO3 Information Disclosure of Installed Extensions
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-1.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2019-01-22-1.yaml
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/commit/889ed77d2905d8b17afd31c723a23240c978823f
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/889ed77d2905d8b17afd31c723a23240c978823f
3
reference_url https://github.com/TYPO3/typo3/commit/c81cca9e419e7aaed551b9b9a8d012ba7bffb287
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/c81cca9e419e7aaed551b9b9a8d012ba7bffb287
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-001
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-001
5
reference_url https://github.com/advisories/GHSA-f624-8hfq-5fh3
reference_id GHSA-f624-8hfq-5fh3
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f624-8hfq-5fh3
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GHSA-f624-8hfq-5fh3
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wr6j-87tp-uqa9
13
url VCID-xuzm-16w7-xkct
vulnerability_id VCID-xuzm-16w7-xkct
summary 
Cross-site Scripting
Cross-Site Scripting in Fluid `ViewHelpers`.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-005/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2019-005/
fixed_packages
0
url pkg:composer/typo3/cms@8.7.23
purl pkg:composer/typo3/cms@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7g9y-zjcr-jbds
11
vulnerability VCID-7haq-hf25-3fhr
12
vulnerability VCID-96dm-8f1m-nfdz
13
vulnerability VCID-9guq-muyz-uke8
14
vulnerability VCID-9xdw-n2ct-nfam
15
vulnerability VCID-d7rj-6q7r-dug5
16
vulnerability VCID-dehe-pf1a-4ugh
17
vulnerability VCID-f21e-8r3b-6ybn
18
vulnerability VCID-fajx-7vk2-yfd4
19
vulnerability VCID-gagg-ngrt-sqe3
20
vulnerability VCID-hakk-r7f8-3fhg
21
vulnerability VCID-humm-nga7-hbe4
22
vulnerability VCID-hz11-99wt-fugr
23
vulnerability VCID-k2ma-t35n-abha
24
vulnerability VCID-kjca-etjw-kbee
25
vulnerability VCID-krk3-7gbv-p3dd
26
vulnerability VCID-mdja-xssw-2fbq
27
vulnerability VCID-na68-jbdb-2bg9
28
vulnerability VCID-p2gb-esw8-3ya7
29
vulnerability VCID-s8vm-j73f-d7g5
30
vulnerability VCID-s9cv-hf49-9ydp
31
vulnerability VCID-tnkm-6p9x-fuaa
32
vulnerability VCID-tyba-yxs8-7kgb
33
vulnerability VCID-v1qu-g63z-eqfp
34
vulnerability VCID-v9eq-8h8q-f7gb
35
vulnerability VCID-vcbt-ta48-vybq
36
vulnerability VCID-wmvt-9z94-qkak
37
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23
1
url pkg:composer/typo3/cms@9.5.4
purl pkg:composer/typo3/cms@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1tdx-n6at-xfdb
1
vulnerability VCID-1wqd-w75h-rbb1
2
vulnerability VCID-29c2-3qgd-tydb
3
vulnerability VCID-32rm-6wes-2ydx
4
vulnerability VCID-3qs5-756e-1kdk
5
vulnerability VCID-3trr-dksg-fkbv
6
vulnerability VCID-5ecx-y3p3-1qdq
7
vulnerability VCID-5z2r-ryxu-6bhs
8
vulnerability VCID-5zge-smza-eqfe
9
vulnerability VCID-65zk-rvrr-7qhv
10
vulnerability VCID-7b93-yrbc-pudn
11
vulnerability VCID-7g9y-zjcr-jbds
12
vulnerability VCID-7haq-hf25-3fhr
13
vulnerability VCID-8rgn-8qf5-ckf9
14
vulnerability VCID-96dm-8f1m-nfdz
15
vulnerability VCID-9guq-muyz-uke8
16
vulnerability VCID-9kzb-yw93-rqd3
17
vulnerability VCID-9xdw-n2ct-nfam
18
vulnerability VCID-abwf-mjxx-xka8
19
vulnerability VCID-bxsu-up11-bqbb
20
vulnerability VCID-d7rj-6q7r-dug5
21
vulnerability VCID-dehe-pf1a-4ugh
22
vulnerability VCID-ekhn-mqrw-uudd
23
vulnerability VCID-f21e-8r3b-6ybn
24
vulnerability VCID-fajx-7vk2-yfd4
25
vulnerability VCID-gagg-ngrt-sqe3
26
vulnerability VCID-gcxn-d8pt-bkbx
27
vulnerability VCID-gh3r-b7t4-b7g2
28
vulnerability VCID-gpfs-y5yk-8fad
29
vulnerability VCID-hakk-r7f8-3fhg
30
vulnerability VCID-hrpp-29gt-1kap
31
vulnerability VCID-humm-nga7-hbe4
32
vulnerability VCID-hz11-99wt-fugr
33
vulnerability VCID-jzk1-rp1c-yfc9
34
vulnerability VCID-k2ma-t35n-abha
35
vulnerability VCID-kjca-etjw-kbee
36
vulnerability VCID-krk3-7gbv-p3dd
37
vulnerability VCID-mdja-xssw-2fbq
38
vulnerability VCID-na68-jbdb-2bg9
39
vulnerability VCID-nfpa-bfvt-dbg9
40
vulnerability VCID-nzb2-bdkk-b7bn
41
vulnerability VCID-p2gb-esw8-3ya7
42
vulnerability VCID-ps8b-6s4z-57fx
43
vulnerability VCID-qf1a-6b5w-pfay
44
vulnerability VCID-s8vm-j73f-d7g5
45
vulnerability VCID-s9cv-hf49-9ydp
46
vulnerability VCID-swkc-45zu-jfce
47
vulnerability VCID-tnkm-6p9x-fuaa
48
vulnerability VCID-tyba-yxs8-7kgb
49
vulnerability VCID-v1qu-g63z-eqfp
50
vulnerability VCID-v9eq-8h8q-f7gb
51
vulnerability VCID-vcbt-ta48-vybq
52
vulnerability VCID-vm94-wdga-rqdc
53
vulnerability VCID-wmvt-9z94-qkak
54
vulnerability VCID-xc11-sr2y-m3dj
55
vulnerability VCID-xwmd-vgye-aqhg
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4
aliases GMS-2019-175
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xuzm-16w7-xkct
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23