← All advisories

Moderate severityNVD Advisory· Published Jul 7, 2020· Updated Aug 4, 2024

CVE-2020-15517

CVE-2020-15517

Description

The ke_search (aka Faceted Search) extension through 2.8.2, and 3.x through 3.1.3, for TYPO3 allows XSS.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
tpwd/ke_searchPackagist	>= 3.0.0, < 3.1.4	3.1.4
tpwd/ke_searchPackagist	< 2.8.3	2.8.3

Affected products

2

TYPO3/ke_searchdescription
ghsa-coords
pkg:composer/tpwd/ke_search
Range: >= 3.0.0, < 3.1.4

Patches

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

6

github.com/advisories/GHSA-gg48-mpp8-cgqcghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2020-15517ghsaADVISORY
github.com/tpwd/ke_search/commit/1cde32c3ebfcb6cda5d364f099979be9741f6714ghsaWEB
github.com/tpwd/ke_search/commit/9551aa4eef441a3e9825776d4a19ee4b6fe6f8eaghsaWEB
typo3.org/help/security-advisoriesmitrex_refsource_MISC
typo3.org/security/advisory/typo3-ext-sa-2020-009ghsax_refsource_CONFIRMWEB

News mentions

0

No linked articles in our index yet.