Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/typo3/cms-core@6.2.0
Typecomposer
Namespacetypo3
Namecms-core
Version6.2.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version12.4.41
Latest_non_vulnerable_version14.0.2
Affected_by_vulnerabilities
0
url VCID-5jgb-dsyx-hyb4
vulnerability_id VCID-5jgb-dsyx-hyb4
summary 
Open Redirection in Login Handling
### Problem
It has been discovered that Login Handling is susceptible to open redirection which allows attackers redirecting to arbitrary content, and conducting phishing attacks. No authentication is required in order to exploit this vulnerability.

### Solution
Update to TYPO3 versions 6.2.57, 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 that fix the problem described.

### Credits
Thanks to Alexander Kellner who reported this issue and to TYPO3 security team member Torben Hansen who fixed the issue.

### References
* [TYPO3-CORE-SA-2021-001](https://typo3.org/security/advisory/typo3-core-sa-2021-001)
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-21338
reference_id
reference_type
scores
0
value 0.00253
scoring_system epss
scoring_elements 0.4849
published_at 2026-05-11T12:55:00Z
1
value 0.00253
scoring_system epss
scoring_elements 0.48593
published_at 2026-04-08T12:55:00Z
2
value 0.00253
scoring_system epss
scoring_elements 0.48589
published_at 2026-04-09T12:55:00Z
3
value 0.00253
scoring_system epss
scoring_elements 0.4861
published_at 2026-04-11T12:55:00Z
4
value 0.00253
scoring_system epss
scoring_elements 0.48584
published_at 2026-04-12T12:55:00Z
5
value 0.00253
scoring_system epss
scoring_elements 0.48596
published_at 2026-04-13T12:55:00Z
6
value 0.00253
scoring_system epss
scoring_elements 0.48646
published_at 2026-04-16T12:55:00Z
7
value 0.00253
scoring_system epss
scoring_elements 0.48641
published_at 2026-04-18T12:55:00Z
8
value 0.00253
scoring_system epss
scoring_elements 0.48598
published_at 2026-04-21T12:55:00Z
9
value 0.00253
scoring_system epss
scoring_elements 0.48583
published_at 2026-04-24T12:55:00Z
10
value 0.00253
scoring_system epss
scoring_elements 0.48594
published_at 2026-04-26T12:55:00Z
11
value 0.00253
scoring_system epss
scoring_elements 0.48542
published_at 2026-04-29T12:55:00Z
12
value 0.00253
scoring_system epss
scoring_elements 0.48458
published_at 2026-05-05T12:55:00Z
13
value 0.00253
scoring_system epss
scoring_elements 0.4852
published_at 2026-05-12T12:55:00Z
14
value 0.00253
scoring_system epss
scoring_elements 0.48545
published_at 2026-05-09T12:55:00Z
15
value 0.00253
scoring_system epss
scoring_elements 0.48529
published_at 2026-04-01T12:55:00Z
16
value 0.00253
scoring_system epss
scoring_elements 0.48564
published_at 2026-04-02T12:55:00Z
17
value 0.00253
scoring_system epss
scoring_elements 0.48587
published_at 2026-04-04T12:55:00Z
18
value 0.00253
scoring_system epss
scoring_elements 0.48539
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-21338
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21338.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21338.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21338.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21338.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-4jhw-2p6j-5wmp
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-4jhw-2p6j-5wmp
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-21338
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-21338
5
reference_url https://packagist.org/packages/typo3/cms-core
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-core
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-001
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-001
7
reference_url https://github.com/advisories/GHSA-4jhw-2p6j-5wmp
reference_id GHSA-4jhw-2p6j-5wmp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4jhw-2p6j-5wmp
fixed_packages
0
url pkg:composer/typo3/cms-core@6.2.57
purl pkg:composer/typo3/cms-core@6.2.57
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.2.57
1
url pkg:composer/typo3/cms-core@7.6.51
purl pkg:composer/typo3/cms-core@7.6.51
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n15v-ta9h-6ffb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@7.6.51
2
url pkg:composer/typo3/cms-core@8.7.40
purl pkg:composer/typo3/cms-core@8.7.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ekfd-wp8z-d7e1
1
vulnerability VCID-n15v-ta9h-6ffb
2
vulnerability VCID-s64f-x81f-b7ce
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.40
3
url pkg:composer/typo3/cms-core@9.5.25
purl pkg:composer/typo3/cms-core@9.5.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4jpa-6fqh-hbfg
1
vulnerability VCID-4t9s-p25a-cfas
2
vulnerability VCID-5paq-5frf-43ed
3
vulnerability VCID-65ue-7jd9-23gf
4
vulnerability VCID-6a9t-8dmn-s3bv
5
vulnerability VCID-8d2m-1ffv-jqe1
6
vulnerability VCID-axvk-13qf-tka7
7
vulnerability VCID-b6er-h7dm-3bev
8
vulnerability VCID-bajy-qbwq-fufn
9
vulnerability VCID-e32h-8q61-hbgc
10
vulnerability VCID-ekfd-wp8z-d7e1
11
vulnerability VCID-g4uc-qeb6-myed
12
vulnerability VCID-gv1b-xtv4-4yg3
13
vulnerability VCID-h6y3-7gsq-skh2
14
vulnerability VCID-mnz3-rj21-67ad
15
vulnerability VCID-mud2-s4rc-fuf6
16
vulnerability VCID-n15v-ta9h-6ffb
17
vulnerability VCID-n7ng-zkkb-2qaz
18
vulnerability VCID-nubu-f1sc-gbes
19
vulnerability VCID-remd-55jh-r3g5
20
vulnerability VCID-s55j-8hbt-akhn
21
vulnerability VCID-s64f-x81f-b7ce
22
vulnerability VCID-t1n7-eswt-73gw
23
vulnerability VCID-taj6-zj2n-5kg8
24
vulnerability VCID-ve7g-8st5-wffb
25
vulnerability VCID-vyvy-y3cw-hbgr
26
vulnerability VCID-w13x-3rp9-wyej
27
vulnerability VCID-xy6y-312d-rygj
28
vulnerability VCID-y32z-2d3f-gkgw
29
vulnerability VCID-zdq2-dhb2-6kaq
30
vulnerability VCID-zn99-ywte-33g6
31
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.5.25
4
url pkg:composer/typo3/cms-core@10.4.14
purl pkg:composer/typo3/cms-core@10.4.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1r9g-c5rn-ukgb
1
vulnerability VCID-1yxw-saf5-wue7
2
vulnerability VCID-4jpa-6fqh-hbfg
3
vulnerability VCID-4t9s-p25a-cfas
4
vulnerability VCID-5paq-5frf-43ed
5
vulnerability VCID-65ue-7jd9-23gf
6
vulnerability VCID-6a9t-8dmn-s3bv
7
vulnerability VCID-8d2m-1ffv-jqe1
8
vulnerability VCID-8sdd-b1bn-cuhx
9
vulnerability VCID-av8u-rvzq-4fc7
10
vulnerability VCID-axvk-13qf-tka7
11
vulnerability VCID-b6er-h7dm-3bev
12
vulnerability VCID-bajy-qbwq-fufn
13
vulnerability VCID-e32h-8q61-hbgc
14
vulnerability VCID-ekfd-wp8z-d7e1
15
vulnerability VCID-g4uc-qeb6-myed
16
vulnerability VCID-gv1b-xtv4-4yg3
17
vulnerability VCID-gyyu-n3b1-zbcj
18
vulnerability VCID-h6y3-7gsq-skh2
19
vulnerability VCID-mnz3-rj21-67ad
20
vulnerability VCID-mud2-s4rc-fuf6
21
vulnerability VCID-n15v-ta9h-6ffb
22
vulnerability VCID-n7ng-zkkb-2qaz
23
vulnerability VCID-nubu-f1sc-gbes
24
vulnerability VCID-remd-55jh-r3g5
25
vulnerability VCID-s55j-8hbt-akhn
26
vulnerability VCID-s64f-x81f-b7ce
27
vulnerability VCID-t1n7-eswt-73gw
28
vulnerability VCID-taj6-zj2n-5kg8
29
vulnerability VCID-ve7g-8st5-wffb
30
vulnerability VCID-vwb2-a84s-5qak
31
vulnerability VCID-vyvy-y3cw-hbgr
32
vulnerability VCID-w13x-3rp9-wyej
33
vulnerability VCID-xy6y-312d-rygj
34
vulnerability VCID-y32z-2d3f-gkgw
35
vulnerability VCID-zdq2-dhb2-6kaq
36
vulnerability VCID-zn99-ywte-33g6
37
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@10.4.14
5
url pkg:composer/typo3/cms-core@11.1.1
purl pkg:composer/typo3/cms-core@11.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1r9g-c5rn-ukgb
1
vulnerability VCID-1yxw-saf5-wue7
2
vulnerability VCID-4jpa-6fqh-hbfg
3
vulnerability VCID-4t9s-p25a-cfas
4
vulnerability VCID-5paq-5frf-43ed
5
vulnerability VCID-65ue-7jd9-23gf
6
vulnerability VCID-6a9t-8dmn-s3bv
7
vulnerability VCID-8d2m-1ffv-jqe1
8
vulnerability VCID-8sdd-b1bn-cuhx
9
vulnerability VCID-av8u-rvzq-4fc7
10
vulnerability VCID-axvk-13qf-tka7
11
vulnerability VCID-b6er-h7dm-3bev
12
vulnerability VCID-bajy-qbwq-fufn
13
vulnerability VCID-e32h-8q61-hbgc
14
vulnerability VCID-ekfd-wp8z-d7e1
15
vulnerability VCID-g4uc-qeb6-myed
16
vulnerability VCID-gv1b-xtv4-4yg3
17
vulnerability VCID-gyyu-n3b1-zbcj
18
vulnerability VCID-h6y3-7gsq-skh2
19
vulnerability VCID-mnz3-rj21-67ad
20
vulnerability VCID-mud2-s4rc-fuf6
21
vulnerability VCID-n15v-ta9h-6ffb
22
vulnerability VCID-n7ng-zkkb-2qaz
23
vulnerability VCID-nubu-f1sc-gbes
24
vulnerability VCID-remd-55jh-r3g5
25
vulnerability VCID-s55j-8hbt-akhn
26
vulnerability VCID-s64f-x81f-b7ce
27
vulnerability VCID-t1n7-eswt-73gw
28
vulnerability VCID-taj6-zj2n-5kg8
29
vulnerability VCID-uyeu-a3xr-fkh4
30
vulnerability VCID-ve7g-8st5-wffb
31
vulnerability VCID-vwb2-a84s-5qak
32
vulnerability VCID-vyvy-y3cw-hbgr
33
vulnerability VCID-w13x-3rp9-wyej
34
vulnerability VCID-xy6y-312d-rygj
35
vulnerability VCID-y32z-2d3f-gkgw
36
vulnerability VCID-zdq2-dhb2-6kaq
37
vulnerability VCID-zn99-ywte-33g6
38
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@11.1.1
aliases CVE-2021-21338, GHSA-4jhw-2p6j-5wmp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5jgb-dsyx-hyb4
1
url VCID-dsu7-jjjq-f3e1
vulnerability_id VCID-dsu7-jjjq-f3e1
summary 
Cleartext storage of session identifier
### Problem
User session identifiers were stored in cleartext - without processing of additional cryptographic hashing algorithms. This vulnerability cannot be exploited directly and occurs in combination with a chained attack - like for instance SQL injection in any other component of the system.

### Solution
Update to TYPO3 versions 6.2.57, 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 that fix the problem described.

### Credits
Thanks to TYPO3 security team member Oliver Hader who reported this issue and to TYPO3 core & security team members Benni Mack & Oliver Hader who fixed the issue.

### References
* [TYPO3-CORE-SA-2021-006](https://typo3.org/security/advisory/typo3-core-sa-2021-006)
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-21339
reference_id
reference_type
scores
0
value 0.00132
scoring_system epss
scoring_elements 0.32171
published_at 2026-05-12T12:55:00Z
1
value 0.00132
scoring_system epss
scoring_elements 0.32735
published_at 2026-04-09T12:55:00Z
2
value 0.00132
scoring_system epss
scoring_elements 0.32736
published_at 2026-04-11T12:55:00Z
3
value 0.00132
scoring_system epss
scoring_elements 0.327
published_at 2026-04-12T12:55:00Z
4
value 0.00132
scoring_system epss
scoring_elements 0.32672
published_at 2026-04-13T12:55:00Z
5
value 0.00132
scoring_system epss
scoring_elements 0.32711
published_at 2026-04-16T12:55:00Z
6
value 0.00132
scoring_system epss
scoring_elements 0.32688
published_at 2026-04-18T12:55:00Z
7
value 0.00132
scoring_system epss
scoring_elements 0.32659
published_at 2026-04-21T12:55:00Z
8
value 0.00132
scoring_system epss
scoring_elements 0.32504
published_at 2026-04-24T12:55:00Z
9
value 0.00132
scoring_system epss
scoring_elements 0.32389
published_at 2026-04-26T12:55:00Z
10
value 0.00132
scoring_system epss
scoring_elements 0.32305
published_at 2026-04-29T12:55:00Z
11
value 0.00132
scoring_system epss
scoring_elements 0.32167
published_at 2026-05-05T12:55:00Z
12
value 0.00132
scoring_system epss
scoring_elements 0.32231
published_at 2026-05-07T12:55:00Z
13
value 0.00132
scoring_system epss
scoring_elements 0.32241
published_at 2026-05-09T12:55:00Z
14
value 0.00132
scoring_system epss
scoring_elements 0.3215
published_at 2026-05-11T12:55:00Z
15
value 0.00132
scoring_system epss
scoring_elements 0.32671
published_at 2026-04-01T12:55:00Z
16
value 0.00132
scoring_system epss
scoring_elements 0.32804
published_at 2026-04-02T12:55:00Z
17
value 0.00132
scoring_system epss
scoring_elements 0.3284
published_at 2026-04-04T12:55:00Z
18
value 0.00132
scoring_system epss
scoring_elements 0.32661
published_at 2026-04-07T12:55:00Z
19
value 0.00132
scoring_system epss
scoring_elements 0.32709
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-21339
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21339.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21339.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21339.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21339.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-qx3w-4864-94ch
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-qx3w-4864-94ch
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-21339
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-21339
5
reference_url https://packagist.org/packages/typo3/cms-core
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-core
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2021-006
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2021-006
7
reference_url https://github.com/advisories/GHSA-qx3w-4864-94ch
reference_id GHSA-qx3w-4864-94ch
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qx3w-4864-94ch
fixed_packages
0
url pkg:composer/typo3/cms-core@6.2.57
purl pkg:composer/typo3/cms-core@6.2.57
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.2.57
1
url pkg:composer/typo3/cms-core@7.6.51
purl pkg:composer/typo3/cms-core@7.6.51
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-n15v-ta9h-6ffb
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@7.6.51
2
url pkg:composer/typo3/cms-core@8.7.40
purl pkg:composer/typo3/cms-core@8.7.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ekfd-wp8z-d7e1
1
vulnerability VCID-n15v-ta9h-6ffb
2
vulnerability VCID-s64f-x81f-b7ce
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.40
3
url pkg:composer/typo3/cms-core@9.5.25
purl pkg:composer/typo3/cms-core@9.5.25
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4jpa-6fqh-hbfg
1
vulnerability VCID-4t9s-p25a-cfas
2
vulnerability VCID-5paq-5frf-43ed
3
vulnerability VCID-65ue-7jd9-23gf
4
vulnerability VCID-6a9t-8dmn-s3bv
5
vulnerability VCID-8d2m-1ffv-jqe1
6
vulnerability VCID-axvk-13qf-tka7
7
vulnerability VCID-b6er-h7dm-3bev
8
vulnerability VCID-bajy-qbwq-fufn
9
vulnerability VCID-e32h-8q61-hbgc
10
vulnerability VCID-ekfd-wp8z-d7e1
11
vulnerability VCID-g4uc-qeb6-myed
12
vulnerability VCID-gv1b-xtv4-4yg3
13
vulnerability VCID-h6y3-7gsq-skh2
14
vulnerability VCID-mnz3-rj21-67ad
15
vulnerability VCID-mud2-s4rc-fuf6
16
vulnerability VCID-n15v-ta9h-6ffb
17
vulnerability VCID-n7ng-zkkb-2qaz
18
vulnerability VCID-nubu-f1sc-gbes
19
vulnerability VCID-remd-55jh-r3g5
20
vulnerability VCID-s55j-8hbt-akhn
21
vulnerability VCID-s64f-x81f-b7ce
22
vulnerability VCID-t1n7-eswt-73gw
23
vulnerability VCID-taj6-zj2n-5kg8
24
vulnerability VCID-ve7g-8st5-wffb
25
vulnerability VCID-vyvy-y3cw-hbgr
26
vulnerability VCID-w13x-3rp9-wyej
27
vulnerability VCID-xy6y-312d-rygj
28
vulnerability VCID-y32z-2d3f-gkgw
29
vulnerability VCID-zdq2-dhb2-6kaq
30
vulnerability VCID-zn99-ywte-33g6
31
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.5.25
4
url pkg:composer/typo3/cms-core@10.4.14
purl pkg:composer/typo3/cms-core@10.4.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1r9g-c5rn-ukgb
1
vulnerability VCID-1yxw-saf5-wue7
2
vulnerability VCID-4jpa-6fqh-hbfg
3
vulnerability VCID-4t9s-p25a-cfas
4
vulnerability VCID-5paq-5frf-43ed
5
vulnerability VCID-65ue-7jd9-23gf
6
vulnerability VCID-6a9t-8dmn-s3bv
7
vulnerability VCID-8d2m-1ffv-jqe1
8
vulnerability VCID-8sdd-b1bn-cuhx
9
vulnerability VCID-av8u-rvzq-4fc7
10
vulnerability VCID-axvk-13qf-tka7
11
vulnerability VCID-b6er-h7dm-3bev
12
vulnerability VCID-bajy-qbwq-fufn
13
vulnerability VCID-e32h-8q61-hbgc
14
vulnerability VCID-ekfd-wp8z-d7e1
15
vulnerability VCID-g4uc-qeb6-myed
16
vulnerability VCID-gv1b-xtv4-4yg3
17
vulnerability VCID-gyyu-n3b1-zbcj
18
vulnerability VCID-h6y3-7gsq-skh2
19
vulnerability VCID-mnz3-rj21-67ad
20
vulnerability VCID-mud2-s4rc-fuf6
21
vulnerability VCID-n15v-ta9h-6ffb
22
vulnerability VCID-n7ng-zkkb-2qaz
23
vulnerability VCID-nubu-f1sc-gbes
24
vulnerability VCID-remd-55jh-r3g5
25
vulnerability VCID-s55j-8hbt-akhn
26
vulnerability VCID-s64f-x81f-b7ce
27
vulnerability VCID-t1n7-eswt-73gw
28
vulnerability VCID-taj6-zj2n-5kg8
29
vulnerability VCID-ve7g-8st5-wffb
30
vulnerability VCID-vwb2-a84s-5qak
31
vulnerability VCID-vyvy-y3cw-hbgr
32
vulnerability VCID-w13x-3rp9-wyej
33
vulnerability VCID-xy6y-312d-rygj
34
vulnerability VCID-y32z-2d3f-gkgw
35
vulnerability VCID-zdq2-dhb2-6kaq
36
vulnerability VCID-zn99-ywte-33g6
37
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@10.4.14
5
url pkg:composer/typo3/cms-core@11.1.1
purl pkg:composer/typo3/cms-core@11.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1r9g-c5rn-ukgb
1
vulnerability VCID-1yxw-saf5-wue7
2
vulnerability VCID-4jpa-6fqh-hbfg
3
vulnerability VCID-4t9s-p25a-cfas
4
vulnerability VCID-5paq-5frf-43ed
5
vulnerability VCID-65ue-7jd9-23gf
6
vulnerability VCID-6a9t-8dmn-s3bv
7
vulnerability VCID-8d2m-1ffv-jqe1
8
vulnerability VCID-8sdd-b1bn-cuhx
9
vulnerability VCID-av8u-rvzq-4fc7
10
vulnerability VCID-axvk-13qf-tka7
11
vulnerability VCID-b6er-h7dm-3bev
12
vulnerability VCID-bajy-qbwq-fufn
13
vulnerability VCID-e32h-8q61-hbgc
14
vulnerability VCID-ekfd-wp8z-d7e1
15
vulnerability VCID-g4uc-qeb6-myed
16
vulnerability VCID-gv1b-xtv4-4yg3
17
vulnerability VCID-gyyu-n3b1-zbcj
18
vulnerability VCID-h6y3-7gsq-skh2
19
vulnerability VCID-mnz3-rj21-67ad
20
vulnerability VCID-mud2-s4rc-fuf6
21
vulnerability VCID-n15v-ta9h-6ffb
22
vulnerability VCID-n7ng-zkkb-2qaz
23
vulnerability VCID-nubu-f1sc-gbes
24
vulnerability VCID-remd-55jh-r3g5
25
vulnerability VCID-s55j-8hbt-akhn
26
vulnerability VCID-s64f-x81f-b7ce
27
vulnerability VCID-t1n7-eswt-73gw
28
vulnerability VCID-taj6-zj2n-5kg8
29
vulnerability VCID-uyeu-a3xr-fkh4
30
vulnerability VCID-ve7g-8st5-wffb
31
vulnerability VCID-vwb2-a84s-5qak
32
vulnerability VCID-vyvy-y3cw-hbgr
33
vulnerability VCID-w13x-3rp9-wyej
34
vulnerability VCID-xy6y-312d-rygj
35
vulnerability VCID-y32z-2d3f-gkgw
36
vulnerability VCID-zdq2-dhb2-6kaq
37
vulnerability VCID-zn99-ywte-33g6
38
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@11.1.1
aliases CVE-2021-21339, GHSA-qx3w-4864-94ch
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dsu7-jjjq-f3e1
2
url VCID-f963-qur3-2qb7
vulnerability_id VCID-f963-qur3-2qb7
summary 
Cross-Site Scripting in Fluid view helpers
> ### Meta
> * CVSS: `CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:F/RL:O/RC:C` (5.7)
> * CWE-79

### Problem
It has been discovered that system extension Fluid (`typo3/cms-fluid`) of the TYPO3 core is vulnerable to cross-site scripting passing user-controlled data as argument to Fluid view helpers.

```
<f:form ... fieldNamePrefix="{payload}" />
<f:be.labels.csh ... label="{payload}" />
<f:be.menus.actionMenu ... label="{payload}" />
```

### Solution
Update to TYPO3 versions 9.5.23 or 10.4.10 that fix the problem described.

### Credits
Thanks to TYPO3 security team member Oliver Hader who reported this issue and to TYPO3 security team members Helmut Hummel & Oliver Hader who fixed the issue.

### References
* [TYPO3-CORE-SA-2020-010](https://typo3.org/security/advisory/typo3-core-sa-2020-010)
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-26227
reference_id
reference_type
scores
0
value 0.00359
scoring_system epss
scoring_elements 0.58124
published_at 2026-05-12T12:55:00Z
1
value 0.00359
scoring_system epss
scoring_elements 0.58079
published_at 2026-04-07T12:55:00Z
2
value 0.00359
scoring_system epss
scoring_elements 0.58133
published_at 2026-04-08T12:55:00Z
3
value 0.00359
scoring_system epss
scoring_elements 0.58137
published_at 2026-04-09T12:55:00Z
4
value 0.00359
scoring_system epss
scoring_elements 0.58153
published_at 2026-04-11T12:55:00Z
5
value 0.00359
scoring_system epss
scoring_elements 0.5813
published_at 2026-04-12T12:55:00Z
6
value 0.00359
scoring_system epss
scoring_elements 0.58109
published_at 2026-04-13T12:55:00Z
7
value 0.00359
scoring_system epss
scoring_elements 0.58139
published_at 2026-04-16T12:55:00Z
8
value 0.00359
scoring_system epss
scoring_elements 0.5814
published_at 2026-04-18T12:55:00Z
9
value 0.00359
scoring_system epss
scoring_elements 0.58115
published_at 2026-04-21T12:55:00Z
10
value 0.00359
scoring_system epss
scoring_elements 0.58082
published_at 2026-05-07T12:55:00Z
11
value 0.00359
scoring_system epss
scoring_elements 0.58095
published_at 2026-05-11T12:55:00Z
12
value 0.00359
scoring_system epss
scoring_elements 0.58081
published_at 2026-04-29T12:55:00Z
13
value 0.00359
scoring_system epss
scoring_elements 0.58041
published_at 2026-05-05T12:55:00Z
14
value 0.00359
scoring_system epss
scoring_elements 0.58143
published_at 2026-05-09T12:55:00Z
15
value 0.00359
scoring_system epss
scoring_elements 0.57999
published_at 2026-04-01T12:55:00Z
16
value 0.00359
scoring_system epss
scoring_elements 0.58083
published_at 2026-04-02T12:55:00Z
17
value 0.00359
scoring_system epss
scoring_elements 0.58104
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-26227
1
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2020-26227.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2020-26227.yaml
2
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2020-26227.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2020-26227.yaml
3
reference_url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-vqqx-jw6p-q3rf
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-vqqx-jw6p-q3rf
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-26227
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-26227
5
reference_url https://packagist.org/packages/typo3/cms-core
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://packagist.org/packages/typo3/cms-core
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2020-010
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2020-010
7
reference_url https://github.com/advisories/GHSA-vqqx-jw6p-q3rf
reference_id GHSA-vqqx-jw6p-q3rf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vqqx-jw6p-q3rf
fixed_packages
0
url pkg:composer/typo3/cms-core@8.7.38
purl pkg:composer/typo3/cms-core@8.7.38
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.38
1
url pkg:composer/typo3/cms-core@9.5.23
purl pkg:composer/typo3/cms-core@9.5.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4jpa-6fqh-hbfg
1
vulnerability VCID-4t9s-p25a-cfas
2
vulnerability VCID-5jgb-dsyx-hyb4
3
vulnerability VCID-5paq-5frf-43ed
4
vulnerability VCID-65ue-7jd9-23gf
5
vulnerability VCID-6a9t-8dmn-s3bv
6
vulnerability VCID-8d2m-1ffv-jqe1
7
vulnerability VCID-axvk-13qf-tka7
8
vulnerability VCID-b6er-h7dm-3bev
9
vulnerability VCID-bajy-qbwq-fufn
10
vulnerability VCID-d8d1-sat6-muhe
11
vulnerability VCID-dsu7-jjjq-f3e1
12
vulnerability VCID-e32h-8q61-hbgc
13
vulnerability VCID-ekfd-wp8z-d7e1
14
vulnerability VCID-g4uc-qeb6-myed
15
vulnerability VCID-gv1b-xtv4-4yg3
16
vulnerability VCID-h6y3-7gsq-skh2
17
vulnerability VCID-he5m-6wj4-rbhc
18
vulnerability VCID-mnz3-rj21-67ad
19
vulnerability VCID-mud2-s4rc-fuf6
20
vulnerability VCID-n15v-ta9h-6ffb
21
vulnerability VCID-n7ng-zkkb-2qaz
22
vulnerability VCID-nubu-f1sc-gbes
23
vulnerability VCID-remd-55jh-r3g5
24
vulnerability VCID-s55j-8hbt-akhn
25
vulnerability VCID-s64f-x81f-b7ce
26
vulnerability VCID-t1n7-eswt-73gw
27
vulnerability VCID-t3jn-vwbx-u7cr
28
vulnerability VCID-taj6-zj2n-5kg8
29
vulnerability VCID-ve7g-8st5-wffb
30
vulnerability VCID-vyvy-y3cw-hbgr
31
vulnerability VCID-w13x-3rp9-wyej
32
vulnerability VCID-xh7y-56vy-5ud8
33
vulnerability VCID-xy6y-312d-rygj
34
vulnerability VCID-y32z-2d3f-gkgw
35
vulnerability VCID-zdq2-dhb2-6kaq
36
vulnerability VCID-zn99-ywte-33g6
37
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.5.23
2
url pkg:composer/typo3/cms-core@10.4.10
purl pkg:composer/typo3/cms-core@10.4.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1r9g-c5rn-ukgb
1
vulnerability VCID-1yxw-saf5-wue7
2
vulnerability VCID-4jpa-6fqh-hbfg
3
vulnerability VCID-4t9s-p25a-cfas
4
vulnerability VCID-5jgb-dsyx-hyb4
5
vulnerability VCID-5paq-5frf-43ed
6
vulnerability VCID-65ue-7jd9-23gf
7
vulnerability VCID-6a9t-8dmn-s3bv
8
vulnerability VCID-8d2m-1ffv-jqe1
9
vulnerability VCID-8sdd-b1bn-cuhx
10
vulnerability VCID-a89c-jvwa-6kh5
11
vulnerability VCID-av8u-rvzq-4fc7
12
vulnerability VCID-axvk-13qf-tka7
13
vulnerability VCID-b6er-h7dm-3bev
14
vulnerability VCID-bajy-qbwq-fufn
15
vulnerability VCID-d8d1-sat6-muhe
16
vulnerability VCID-dhrm-uxuv-zfaj
17
vulnerability VCID-dsu7-jjjq-f3e1
18
vulnerability VCID-e32h-8q61-hbgc
19
vulnerability VCID-ekfd-wp8z-d7e1
20
vulnerability VCID-g4uc-qeb6-myed
21
vulnerability VCID-gv1b-xtv4-4yg3
22
vulnerability VCID-gyyu-n3b1-zbcj
23
vulnerability VCID-h6y3-7gsq-skh2
24
vulnerability VCID-he5m-6wj4-rbhc
25
vulnerability VCID-mnz3-rj21-67ad
26
vulnerability VCID-mud2-s4rc-fuf6
27
vulnerability VCID-n15v-ta9h-6ffb
28
vulnerability VCID-n7ng-zkkb-2qaz
29
vulnerability VCID-nubu-f1sc-gbes
30
vulnerability VCID-remd-55jh-r3g5
31
vulnerability VCID-s55j-8hbt-akhn
32
vulnerability VCID-s64f-x81f-b7ce
33
vulnerability VCID-t1n7-eswt-73gw
34
vulnerability VCID-t3jn-vwbx-u7cr
35
vulnerability VCID-taj6-zj2n-5kg8
36
vulnerability VCID-ve7g-8st5-wffb
37
vulnerability VCID-vwb2-a84s-5qak
38
vulnerability VCID-vyvy-y3cw-hbgr
39
vulnerability VCID-w13x-3rp9-wyej
40
vulnerability VCID-xh7y-56vy-5ud8
41
vulnerability VCID-xy6y-312d-rygj
42
vulnerability VCID-y32z-2d3f-gkgw
43
vulnerability VCID-zdq2-dhb2-6kaq
44
vulnerability VCID-zn99-ywte-33g6
45
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@10.4.10
aliases CVE-2020-26227, GHSA-vqqx-jw6p-q3rf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f963-qur3-2qb7
3
url VCID-re9h-ze98-rbhu
vulnerability_id VCID-re9h-ze98-rbhu
summary 
Typo3 Cross-Site Scripting in Flash component (ELTS)
TYPO3 6.2.0 to 6.2.38 ELTS and 7.0.0 to 7.1.0 included a vulnerable external component, which could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-8091
reference_id
reference_type
scores
0
value 0.20517
scoring_system epss
scoring_elements 0.95611
published_at 2026-05-12T12:55:00Z
1
value 0.20517
scoring_system epss
scoring_elements 0.95552
published_at 2026-04-09T12:55:00Z
2
value 0.20517
scoring_system epss
scoring_elements 0.95556
published_at 2026-04-11T12:55:00Z
3
value 0.20517
scoring_system epss
scoring_elements 0.95557
published_at 2026-04-12T12:55:00Z
4
value 0.20517
scoring_system epss
scoring_elements 0.95559
published_at 2026-04-13T12:55:00Z
5
value 0.20517
scoring_system epss
scoring_elements 0.95567
published_at 2026-04-16T12:55:00Z
6
value 0.20517
scoring_system epss
scoring_elements 0.95573
published_at 2026-04-21T12:55:00Z
7
value 0.20517
scoring_system epss
scoring_elements 0.95574
published_at 2026-04-24T12:55:00Z
8
value 0.20517
scoring_system epss
scoring_elements 0.95576
published_at 2026-04-26T12:55:00Z
9
value 0.20517
scoring_system epss
scoring_elements 0.95575
published_at 2026-04-29T12:55:00Z
10
value 0.20517
scoring_system epss
scoring_elements 0.95591
published_at 2026-05-05T12:55:00Z
11
value 0.20517
scoring_system epss
scoring_elements 0.95594
published_at 2026-05-07T12:55:00Z
12
value 0.20517
scoring_system epss
scoring_elements 0.95601
published_at 2026-05-09T12:55:00Z
13
value 0.20517
scoring_system epss
scoring_elements 0.95607
published_at 2026-05-11T12:55:00Z
14
value 0.20517
scoring_system epss
scoring_elements 0.95524
published_at 2026-04-01T12:55:00Z
15
value 0.20517
scoring_system epss
scoring_elements 0.95532
published_at 2026-04-02T12:55:00Z
16
value 0.20517
scoring_system epss
scoring_elements 0.95538
published_at 2026-04-04T12:55:00Z
17
value 0.20517
scoring_system epss
scoring_elements 0.95542
published_at 2026-04-07T12:55:00Z
18
value 0.20517
scoring_system epss
scoring_elements 0.95549
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-8091
1
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
2
reference_url https://github.com/TYPO3/typo3/blob/4cb53e828bd5138d180cdf9cac1ccf7fd31086d2/typo3/sysext/core/Documentation/Changelog/7.2/Breaking-65962-WebSVGLibraryAndAPIRemoved.rst
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/blob/4cb53e828bd5138d180cdf9cac1ccf7fd31086d2/typo3/sysext/core/Documentation/Changelog/7.2/Breaking-65962-WebSVGLibraryAndAPIRemoved.rst
3
reference_url https://github.com/TYPO3/typo3/commit/482e2e992f80f5e38cb48fcaea40fd9812a5252c
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/482e2e992f80f5e38cb48fcaea40fd9812a5252c
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-8091
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-8091
5
reference_url https://typo3.org/security/advisory/typo3-psa-2019-003
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-psa-2019-003
6
reference_url https://typo3.org/security/advisory/typo3-psa-2019-003/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-psa-2019-003/
7
reference_url https://www.purplemet.com/blog/typo3-xss-vulnerability
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.purplemet.com/blog/typo3-xss-vulnerability
8
reference_url https://github.com/advisories/GHSA-qvhv-pwww-53jj
reference_id GHSA-qvhv-pwww-53jj
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qvhv-pwww-53jj
fixed_packages
0
url pkg:composer/typo3/cms-core@8.7.7
purl pkg:composer/typo3/cms-core@8.7.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12y5-7b81-wkfu
1
vulnerability VCID-21e8-x7mp-hugk
2
vulnerability VCID-28bf-jvah-zkhw
3
vulnerability VCID-2meq-x4kd-bbdn
4
vulnerability VCID-3gg5-1921-rbfs
5
vulnerability VCID-3n2r-awja-dug9
6
vulnerability VCID-3v4n-fzxa-bfaw
7
vulnerability VCID-4btk-jt5n-2ugf
8
vulnerability VCID-4jpa-6fqh-hbfg
9
vulnerability VCID-551q-gpyd-ffe8
10
vulnerability VCID-5jgb-dsyx-hyb4
11
vulnerability VCID-5mxm-88r9-hfey
12
vulnerability VCID-5paq-5frf-43ed
13
vulnerability VCID-5u4q-m66t-wqcj
14
vulnerability VCID-5z59-dn7p-xbc5
15
vulnerability VCID-6xmj-wbea-r7ex
16
vulnerability VCID-9g62-zd1x-3bdg
17
vulnerability VCID-9gpp-ez8w-rqav
18
vulnerability VCID-9jj4-ec9n-qbhs
19
vulnerability VCID-9x6r-56xm-n7h7
20
vulnerability VCID-9zqs-hjay-fkev
21
vulnerability VCID-a563-vtwa-hkbr
22
vulnerability VCID-axaf-45kr-kbfe
23
vulnerability VCID-axvk-13qf-tka7
24
vulnerability VCID-ayw6-8pn4-17eb
25
vulnerability VCID-b6er-h7dm-3bev
26
vulnerability VCID-b81w-n2ne-z3ee
27
vulnerability VCID-bajy-qbwq-fufn
28
vulnerability VCID-bnne-7p2q-eqd2
29
vulnerability VCID-cm14-t8uv-k3es
30
vulnerability VCID-d99v-v9cj-zfh2
31
vulnerability VCID-dj88-f3p8-cfbn
32
vulnerability VCID-dm97-51uu-r7gw
33
vulnerability VCID-dsu7-jjjq-f3e1
34
vulnerability VCID-e268-wagv-sbex
35
vulnerability VCID-eajg-ctpd-2bby
36
vulnerability VCID-ebpa-58em-wqam
37
vulnerability VCID-ehzg-bzrd-kbcc
38
vulnerability VCID-ekfd-wp8z-d7e1
39
vulnerability VCID-f4bv-pzdy-dfcb
40
vulnerability VCID-f963-qur3-2qb7
41
vulnerability VCID-g4uc-qeb6-myed
42
vulnerability VCID-gcnj-6qb6-pbgz
43
vulnerability VCID-gv1b-xtv4-4yg3
44
vulnerability VCID-h6y3-7gsq-skh2
45
vulnerability VCID-he5m-6wj4-rbhc
46
vulnerability VCID-hhmn-yz5p-xkap
47
vulnerability VCID-j77k-hjgx-5kc5
48
vulnerability VCID-k8af-cg9k-87a9
49
vulnerability VCID-mh4f-vtfj-hbb1
50
vulnerability VCID-mnz3-rj21-67ad
51
vulnerability VCID-n15v-ta9h-6ffb
52
vulnerability VCID-n1cb-8py6-bbhu
53
vulnerability VCID-n78p-x7hh-gqcf
54
vulnerability VCID-n7ng-zkkb-2qaz
55
vulnerability VCID-pmzz-9rws-4ud5
56
vulnerability VCID-pss5-as4b-cyf2
57
vulnerability VCID-px44-19tj-h7aa
58
vulnerability VCID-q8hy-wjd9-nbgp
59
vulnerability VCID-qb4j-9tz7-m7a2
60
vulnerability VCID-rdrs-mhaw-b3ge
61
vulnerability VCID-rwqs-3ktq-qqbd
62
vulnerability VCID-s53a-f91p-huf4
63
vulnerability VCID-s55j-8hbt-akhn
64
vulnerability VCID-s64f-x81f-b7ce
65
vulnerability VCID-sr3p-pdxy-4yhu
66
vulnerability VCID-stzu-sxe6-5yf5
67
vulnerability VCID-swnc-ke6h-ekew
68
vulnerability VCID-t1n7-eswt-73gw
69
vulnerability VCID-t3jn-vwbx-u7cr
70
vulnerability VCID-taj6-zj2n-5kg8
71
vulnerability VCID-tnjd-pyys-akav
72
vulnerability VCID-tw1y-t4qj-j3d1
73
vulnerability VCID-vxry-uvph-kbfd
74
vulnerability VCID-vyvy-y3cw-hbgr
75
vulnerability VCID-wea9-egep-h7g5
76
vulnerability VCID-wkm6-cgc8-bfa8
77
vulnerability VCID-xa4m-xpa9-v7h8
78
vulnerability VCID-xh7y-56vy-5ud8
79
vulnerability VCID-y32z-2d3f-gkgw
80
vulnerability VCID-zdq2-dhb2-6kaq
81
vulnerability VCID-zkea-ge1t-z7gn
82
vulnerability VCID-zspb-bd6j-wyd2
83
vulnerability VCID-zw9b-6vkf-3fc6
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.7
aliases CVE-2020-8091, GHSA-qvhv-pwww-53jj
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-re9h-ze98-rbhu
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@6.2.0