Packagist (Composer) package

typo3/cms-core

pkg:composer/typo3/cms-core

Vulnerabilities (85)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2023-38499	—	>= 9.4.0, < 9.5.42	9.5.42	Jul 25, 2023	TYPO3 is an open source PHP based web content management system. Starting in version 9.4.0 and prior to versions 9.5.42 ELTS, 10.4.39 ELTS, 11.5.30, and 12.4.4, in multi-site scenarios, enumerating the HTTP query parameters `id` and `L` allowed out-of-scope access to rendered con
CVE-2023-24814	—	>= 12.0.0, < 12.2.0	12.2.0	Feb 7, 2023	TYPO3 is a free and open source Content Management Framework released under the GNU General Public License. In affected versions the TYPO3 core component `GeneralUtility::getIndpEnv()` uses the unfiltered server environment variable `PATH_INFO`, which allows attackers to inject m
CVE-2022-23504	—	>= 9.0.0, < 9.5.38	9.5.38	Dec 14, 2022	TYPO3 is an open source PHP based web content management system. Versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1 are subject to Sensitive Information Disclosure. Due to the lack of handling user-submitted YAML placeholder expressions in the site configuration backend modul
CVE-2022-23503	—	>= 8.0.0, < 8.7.49	8.7.49	Dec 14, 2022	TYPO3 is an open source PHP based web content management system. Versions prior to 8.7.49, 9.5.38, 10.4.33, 11.5.20, and 12.1.1 are vulnerable to Code Injection. Due to the lack of separating user-submitted data from the internal configuration in the Form Designer backend module,
CVE-2022-23502	—	>= 10.0.0, < 10.4.33	10.4.33	Dec 14, 2022	TYPO3 is an open source PHP based web content management system. In versions prior to 10.4.33, 11.5.20, and 12.1.1, When users reset their password using the corresponding password recovery functionality, existing sessions for that particular user account were not revoked. This a
CVE-2022-23501	—	< 8.7.49	8.7.49	Dec 14, 2022	TYPO3 is an open source PHP based web content management system. In versions prior to 8.7.49, 9.5.38, 10.4.33, 11.5.20, and 12.1.1 TYPO3 is vulnerable to Improper Authentication. Restricting frontend login to specific users, organized in different storage folders (partitions), ca
CVE-2022-23500	—	>= 9.0.0, < 9.5.38	9.5.38	Dec 14, 2022	TYPO3 is an open source PHP based web content management system. In versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1, requesting invalid or non-existing resources via HTTP triggers the page error handler, which again could retrieve content to be shown as an error message fr
CVE-2022-36105	—	>= 7.0.0, < 7.6.58	7.6.58	Sep 13, 2022	TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that observing response time during user authentication (backend and frontend) can be used to distinguish between existing and non-existing user accounts. Extension
CVE-2022-36106	—	>= 10.4.0, < 10.4.32	10.4.32	Sep 13, 2022	TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the expiration time of a password reset link for TYPO3 backend users has never been evaluated. As a result, a password reset link could be used to perform a pas
CVE-2022-36107	—	>= 7.0.0, < 7.6.58	7.6.58	Sep 13, 2022	TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the `FileDumpController` (backend and frontend context) is vulnerable to cross-site scripting when malicious files are displayed using this component. A valid b
CVE-2022-36104	—	>= 11.4.0, < 11.5.16	11.5.16	Sep 13, 2022	TYPO3 is an open source PHP based web content management system released under the GNU GPL. In affected versions requesting invalid or non-existing resources via HTTP triggers the page error handler which again could retrieve content to be shown as an error message from another p
CVE-2022-36108	—	>= 10.3.0, < 10.4.32	10.4.32	Sep 13, 2022	TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the `f:asset.css` view helper is vulnerable to cross-site scripting when user input is passed as variables to the CSS. Update to TYPO3 version 10.4.32 or 11.5.1
CVE-2022-36020	—	>= 10.0.0, < 10.4.32	10.4.32	Sep 13, 2022	The typo3/html-sanitizer package is an HTML sanitizer, written in PHP, aiming to provide XSS-safe markup based on explicitly allowed tags, attributes and values. Due to a parsing issue in the upstream package `masterminds/html5`, malicious markup used in a sequence with special H
CVE-2022-31050	—	>= 9.0.0, < 9.5.35	9.5.35	Jun 14, 2022	TYPO3 is an open source web content management system. Prior to versions 9.5.34 ELTS, 10.4.29, and 11.5.11, Admin Tool sessions initiated via the TYPO3 backend user interface had not been revoked even if the corresponding user account was degraded to lower permissions or disabled
CVE-2022-31048	—	>= 8.0.0, < 8.7.47	8.7.47	Jun 14, 2022	TYPO3 is an open source web content management system. Prior to versions 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, the Form Designer backend module of the Form Framework is vulnerable to cross-site scripting. A valid backend user account with access to the form module is ne
CVE-2022-31049	—	>= 9.0.0, < 9.5.35	9.5.35	Jun 14, 2022	TYPO3 is an open source web content management system. Prior to versions 9.5.34 ELTS, 10.4.29, and 11.5.11, user submitted content was used without being properly encoded in HTML emails sent to users. The actually affected components were mail clients used to view those messages.
CVE-2022-31046	—	>= 7.0.0, < 7.6.57	7.6.57	Jun 14, 2022	TYPO3 is an open source web content management system. Prior to versions 7.6.57 ELTS, 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, the export functionality fails to limit the result set to allowed columns of a particular database table. This way, authenticated users can export
CVE-2022-31047	—	>= 7.0.0, < 7.6.57	7.6.57	Jun 14, 2022	TYPO3 is an open source web content management system. Prior to versions 7.6.57 ELTS, 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, system internal credentials or keys (e.g. database credentials) can be logged as plaintext in exception handlers, when logging the complete except
CVE-2021-41113	—	>= 11.2.0, < 11.5.0	11.5.0	Oct 5, 2021	TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the new TYPO3 v11 feature that allows users to create and share deep links in the backend user interface is vulnerable to cross-site-request-forgery. The impact
CVE-2021-41114	—	>= 11.0.0, < 11.5.0	11.5.0	Oct 5, 2021	TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that TYPO3 CMS is susceptible to host spoofing due to improper validation of the HTTP Host header. TYPO3 uses the HTTP Host header, for example, to generate absolute

CVE-2023-38499Jul 25, 2023
affected >= 9.4.0, < 9.5.42fixed 9.5.42
TYPO3 is an open source PHP based web content management system. Starting in version 9.4.0 and prior to versions 9.5.42 ELTS, 10.4.39 ELTS, 11.5.30, and 12.4.4, in multi-site scenarios, enumerating the HTTP query parameters `id` and `L` allowed out-of-scope access to rendered con
CVE-2023-24814Feb 7, 2023
affected >= 12.0.0, < 12.2.0fixed 12.2.0
TYPO3 is a free and open source Content Management Framework released under the GNU General Public License. In affected versions the TYPO3 core component `GeneralUtility::getIndpEnv()` uses the unfiltered server environment variable `PATH_INFO`, which allows attackers to inject m
CVE-2022-23504Dec 14, 2022
affected >= 9.0.0, < 9.5.38fixed 9.5.38
TYPO3 is an open source PHP based web content management system. Versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1 are subject to Sensitive Information Disclosure. Due to the lack of handling user-submitted YAML placeholder expressions in the site configuration backend modul
CVE-2022-23503Dec 14, 2022
affected >= 8.0.0, < 8.7.49fixed 8.7.49
TYPO3 is an open source PHP based web content management system. Versions prior to 8.7.49, 9.5.38, 10.4.33, 11.5.20, and 12.1.1 are vulnerable to Code Injection. Due to the lack of separating user-submitted data from the internal configuration in the Form Designer backend module,
CVE-2022-23502Dec 14, 2022
affected >= 10.0.0, < 10.4.33fixed 10.4.33
TYPO3 is an open source PHP based web content management system. In versions prior to 10.4.33, 11.5.20, and 12.1.1, When users reset their password using the corresponding password recovery functionality, existing sessions for that particular user account were not revoked. This a
CVE-2022-23501Dec 14, 2022
affected < 8.7.49fixed 8.7.49
TYPO3 is an open source PHP based web content management system. In versions prior to 8.7.49, 9.5.38, 10.4.33, 11.5.20, and 12.1.1 TYPO3 is vulnerable to Improper Authentication. Restricting frontend login to specific users, organized in different storage folders (partitions), ca
CVE-2022-23500Dec 14, 2022
affected >= 9.0.0, < 9.5.38fixed 9.5.38
TYPO3 is an open source PHP based web content management system. In versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1, requesting invalid or non-existing resources via HTTP triggers the page error handler, which again could retrieve content to be shown as an error message fr
CVE-2022-36105Sep 13, 2022
affected >= 7.0.0, < 7.6.58fixed 7.6.58
TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that observing response time during user authentication (backend and frontend) can be used to distinguish between existing and non-existing user accounts. Extension
CVE-2022-36106Sep 13, 2022
affected >= 10.4.0, < 10.4.32fixed 10.4.32
TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the expiration time of a password reset link for TYPO3 backend users has never been evaluated. As a result, a password reset link could be used to perform a pas
CVE-2022-36107Sep 13, 2022
affected >= 7.0.0, < 7.6.58fixed 7.6.58
TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the `FileDumpController` (backend and frontend context) is vulnerable to cross-site scripting when malicious files are displayed using this component. A valid b
CVE-2022-36104Sep 13, 2022
affected >= 11.4.0, < 11.5.16fixed 11.5.16
TYPO3 is an open source PHP based web content management system released under the GNU GPL. In affected versions requesting invalid or non-existing resources via HTTP triggers the page error handler which again could retrieve content to be shown as an error message from another p
CVE-2022-36108Sep 13, 2022
affected >= 10.3.0, < 10.4.32fixed 10.4.32
TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the `f:asset.css` view helper is vulnerable to cross-site scripting when user input is passed as variables to the CSS. Update to TYPO3 version 10.4.32 or 11.5.1
CVE-2022-36020Sep 13, 2022
affected >= 10.0.0, < 10.4.32fixed 10.4.32
The typo3/html-sanitizer package is an HTML sanitizer, written in PHP, aiming to provide XSS-safe markup based on explicitly allowed tags, attributes and values. Due to a parsing issue in the upstream package `masterminds/html5`, malicious markup used in a sequence with special H
CVE-2022-31050Jun 14, 2022
affected >= 9.0.0, < 9.5.35fixed 9.5.35
TYPO3 is an open source web content management system. Prior to versions 9.5.34 ELTS, 10.4.29, and 11.5.11, Admin Tool sessions initiated via the TYPO3 backend user interface had not been revoked even if the corresponding user account was degraded to lower permissions or disabled
CVE-2022-31048Jun 14, 2022
affected >= 8.0.0, < 8.7.47fixed 8.7.47
TYPO3 is an open source web content management system. Prior to versions 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, the Form Designer backend module of the Form Framework is vulnerable to cross-site scripting. A valid backend user account with access to the form module is ne
CVE-2022-31049Jun 14, 2022
affected >= 9.0.0, < 9.5.35fixed 9.5.35
TYPO3 is an open source web content management system. Prior to versions 9.5.34 ELTS, 10.4.29, and 11.5.11, user submitted content was used without being properly encoded in HTML emails sent to users. The actually affected components were mail clients used to view those messages.
CVE-2022-31046Jun 14, 2022
affected >= 7.0.0, < 7.6.57fixed 7.6.57
TYPO3 is an open source web content management system. Prior to versions 7.6.57 ELTS, 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, the export functionality fails to limit the result set to allowed columns of a particular database table. This way, authenticated users can export
CVE-2022-31047Jun 14, 2022
affected >= 7.0.0, < 7.6.57fixed 7.6.57
TYPO3 is an open source web content management system. Prior to versions 7.6.57 ELTS, 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, system internal credentials or keys (e.g. database credentials) can be logged as plaintext in exception handlers, when logging the complete except
CVE-2021-41113Oct 5, 2021
affected >= 11.2.0, < 11.5.0fixed 11.5.0
TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the new TYPO3 v11 feature that allows users to create and share deep links in the backend user interface is vulnerable to cross-site-request-forgery. The impact
CVE-2021-41114Oct 5, 2021
affected >= 11.0.0, < 11.5.0fixed 11.5.0
TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that TYPO3 CMS is susceptible to host spoofing due to improper validation of the HTTP Host header. TYPO3 uses the HTTP Host header, for example, to generate absolute

Page 2 of 5