2 matches found
TYPO3 9.x < 9.5.17 / 10.x < 10.4.2 Multiple Vulnerabilities
The version of TYPO3 installed on the remote host is 9.x prior to 9.5.17 or 10.x prior to 10.4.2. It is, therefore, affected by multiple vulnerabilities: - A cross-site scripting XSS vulnerability exists in Typo3's form engine component due to improper validation of user-supplied input before...
CVE-2020-11066
Summary of CVE-2020-11066 (TYPO3) : TYPO3 CMS versions 9.x before 9.5.17 and 10.x before 10.4.2 are affected by an insecure deserialization flaw. Calling unserialize() on malicious user-submitted content can modify dynamically-determined object attributes and may trigger deletion of an arbitrary ...