Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/05/23 7:41 a.m.11 views

CVE-2024-55922

TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery CSRF. Additionally, state-changing actions in downstrea...

5.4CVSS5.5AI score0.00183EPSS
Exploits0References1
nvd
nvd
added 2025/01/14 8:15 p.m.14 views

CVE-2024-55922

TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery CSRF. Additionally, state-changing actions in downstrea...

5.4CVSS0.00183EPSS
Exploits0References2
cve
cve
added 2025/01/14 7:23 p.m.61 views

CVE-2024-55922

CVE-2024-55922 is a CSRF vulnerability in TYPO3’s backend UI deep-link functionality affecting the Form Framework Module. The issue allows an attacker to manipulate or delete persisted form definitions when a victim with an active backend session is deceived into visiting a malicious URL. Conditi...

5.4CVSS5.5AI score0.00183EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2025/01/14 7:23 p.m.18 views

CVE-2024-55922 Cross-Site Request Forgery in Form Framework Module in TYPO3

TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery CSRF. Additionally, state-changing actions in downstrea...

5.4CVSS0.00183EPSS
Exploits0References2
github
github
added 2025/01/14 3:40 p.m.13 views

TYPO3 Form Framework Module vulnerable to Cross-Site Request Forgery

Problem A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery CSRF. Additionally, state-changing actions in downstream components incorrectly accepted submissions via HTTP...

5.4CVSS5.5AI score0.00183EPSS
Exploits0References5Affected Software1
ptsecurity
ptsecurity
added 2025/01/14 12:0 a.m.5 views

PT-2025-3150 · Typo3 · Typo3

Name of the Vulnerable Software and Affected Versions: TYPO3 versions prior to 11.5.42 ELTS TYPO3 versions prior to 12.4.25 LTS TYPO3 versions prior to 13.4.3 LTS Description: A vulnerability has been identified in the backend user interface functionality involving deep links, which is susceptibl...

5.4CVSS6.8AI score0.00183EPSS
Exploits0References9
Rows per page
Query Builder