Search for packages
Package details: pkg:composer/typo3/cms@7.6.10
purl pkg:composer/typo3/cms@7.6.10
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (12)
Vulnerability Summary Aliases
VCID-6bne-vnc6-wfe9 Cross-site Scripting Cross-Site Scripting vulnerability in typolinks. 2016-07-19-5
VCID-8a25-9af4-tyhk Insecure Unserialize in TYPO3 Import/Export Failing to properly validate incoming import data, the Import/Export component is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed. GHSA-xvcp-33rc-j8gq
VCID-axg7-qg5u-kbg7 Cross-Site Scripting in TYPO3 Backend Failing to properly encode user input, some backend components are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability. GHSA-86r8-4g3w-7xjp
VCID-cdkv-3rbf-27ed Information Disclosure in TYPO3 Backend. 2016-07-19-4
VCID-d2qd-qjn9-jffs Cross-site Scripting Cross-Site Scripting in TYPO3 Backend. 2016-07-19-1
VCID-d381-rcq3-n3az Information Disclosure in TYPO3 Backend The TYPO3 backend module stores the username of an authenticated backend user in its cache files. By guessing the file path to the cache files it is possible to receive valid backend usernames. GHSA-vpr3-rc99-2wpr
VCID-dc9k-gxr2-6bah Cross-site Scripting Cross-Site Scripting in third party library `mso/idna-convert`. 2016-07-19-7
VCID-dm6k-fzm6-sqbe Cross-Site Scripting (XSS) vulnerability in typolinks All link fields within the TYPO3 installation are vulnerable to Cross-Site Scripting as authorized editors can insert data commands by using the url scheme "data:". GHSA-p5c5-gmj4-g48f
VCID-j1nq-26xv-yff3 SQL Injection in TYPO3 Frontend Login Failing to properly escape user input, the frontend login component is vulnerable to SQL Injection. A valid frontend user account is needed to exploit this vulnerability. GHSA-j86x-pjmr-9m6w
VCID-m3gb-henf-4uga SQL Injection in TYPO3 Frontend Login. 2016-07-19-3
VCID-psu6-y6fc-nqh4 Deserialization of Untrusted Data Insecure Unserialize in TYPO3 Import/Export. 2016-07-19-2
VCID-tdsj-15xc-x3ar Cross-Site Scripting in third party library mso/idna-convert Make sure to not expose the vendor directory to the publicly accessible document root. In composer managed installation, make sure to configure a dedicated web folder. In general it is recommended to not expose the complete typo3_src sources folder in the document root. GHSA-qmwf-j7g7-f5jw

Date Actor Action Vulnerability Source VulnerableCode Version
2025-07-03T13:56:52.571059+00:00 GitLab Importer Fixing VCID-j1nq-26xv-yff3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/GHSA-j86x-pjmr-9m6w.yml 36.1.3
2025-07-03T13:56:52.356004+00:00 GitLab Importer Fixing VCID-dm6k-fzm6-sqbe https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/GHSA-p5c5-gmj4-g48f.yml 36.1.3
2025-07-03T13:56:52.252224+00:00 GitLab Importer Fixing VCID-d381-rcq3-n3az https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/GHSA-vpr3-rc99-2wpr.yml 36.1.3
2025-07-03T13:56:51.706505+00:00 GitLab Importer Fixing VCID-8a25-9af4-tyhk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/GHSA-xvcp-33rc-j8gq.yml 36.1.3
2025-07-03T13:56:51.421556+00:00 GitLab Importer Fixing VCID-tdsj-15xc-x3ar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/GHSA-qmwf-j7g7-f5jw.yml 36.1.3
2025-07-03T13:56:51.331352+00:00 GitLab Importer Fixing VCID-axg7-qg5u-kbg7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/GHSA-86r8-4g3w-7xjp.yml 36.1.3
2025-07-01T18:10:14.625208+00:00 GitLab Importer Fixing VCID-6bne-vnc6-wfe9 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/2016-07-19-5.yml 36.1.3
2025-07-01T18:10:14.588440+00:00 GitLab Importer Fixing VCID-d2qd-qjn9-jffs https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/2016-07-19-1.yml 36.1.3
2025-07-01T18:10:14.553591+00:00 GitLab Importer Fixing VCID-dc9k-gxr2-6bah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/2016-07-19-7.yml 36.1.3
2025-07-01T18:10:14.530889+00:00 GitLab Importer Fixing VCID-m3gb-henf-4uga https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/2016-07-19-3.yml 36.1.3
2025-07-01T18:10:14.503879+00:00 GitLab Importer Fixing VCID-psu6-y6fc-nqh4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/2016-07-19-2.yml 36.1.3
2025-07-01T18:10:14.470970+00:00 GitLab Importer Fixing VCID-cdkv-3rbf-27ed https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/2016-07-19-4.yml 36.1.3
2025-07-01T14:35:05.728804+00:00 GHSA Importer Fixing VCID-dm6k-fzm6-sqbe https://github.com/advisories/GHSA-p5c5-gmj4-g48f 36.1.3
2025-07-01T14:35:05.655800+00:00 GHSA Importer Fixing VCID-tdsj-15xc-x3ar https://github.com/advisories/GHSA-qmwf-j7g7-f5jw 36.1.3
2025-07-01T14:35:05.606843+00:00 GHSA Importer Fixing VCID-d381-rcq3-n3az https://github.com/advisories/GHSA-vpr3-rc99-2wpr 36.1.3
2025-07-01T14:35:05.573221+00:00 GHSA Importer Fixing VCID-j1nq-26xv-yff3 https://github.com/advisories/GHSA-j86x-pjmr-9m6w 36.1.3
2025-07-01T14:35:05.456946+00:00 GHSA Importer Fixing VCID-8a25-9af4-tyhk https://github.com/advisories/GHSA-xvcp-33rc-j8gq 36.1.3
2025-07-01T14:35:05.424579+00:00 GHSA Importer Fixing VCID-axg7-qg5u-kbg7 https://github.com/advisories/GHSA-86r8-4g3w-7xjp 36.1.3
2025-07-01T12:11:09.732127+00:00 GithubOSV Importer Fixing VCID-d381-rcq3-n3az https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-vpr3-rc99-2wpr/GHSA-vpr3-rc99-2wpr.json 36.1.3
2025-07-01T12:11:08.623812+00:00 GithubOSV Importer Fixing VCID-dm6k-fzm6-sqbe https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-p5c5-gmj4-g48f/GHSA-p5c5-gmj4-g48f.json 36.1.3
2025-07-01T12:11:07.006081+00:00 GithubOSV Importer Fixing VCID-tdsj-15xc-x3ar https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-qmwf-j7g7-f5jw/GHSA-qmwf-j7g7-f5jw.json 36.1.3
2025-07-01T12:11:03.100113+00:00 GithubOSV Importer Fixing VCID-j1nq-26xv-yff3 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-j86x-pjmr-9m6w/GHSA-j86x-pjmr-9m6w.json 36.1.3
2025-07-01T12:11:00.495747+00:00 GithubOSV Importer Fixing VCID-axg7-qg5u-kbg7 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-86r8-4g3w-7xjp/GHSA-86r8-4g3w-7xjp.json 36.1.3
2025-07-01T12:10:58.124188+00:00 GithubOSV Importer Fixing VCID-8a25-9af4-tyhk https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-xvcp-33rc-j8gq/GHSA-xvcp-33rc-j8gq.json 36.1.3