Lucene search
K

7036 matches found

Nuclei
Nuclei
added 12 hours ago21 views

TYPO3 ceselector Extension - Insecure Deserialization

TYPO3 extension contains a PHP Object Injection caused by passing attacker-controlled cookie to unserialize without validation, letting remote unauthenticated attackers achieve remote code execution, exploit requires Persistent Mode: Static configuration. id: CVE-2026-46725 info: name: TYPO3...

9.2CVSS6.2AI score0.02306EPSS
Exploits1References2
Nuclei
Nuclei
added 12 hours ago60 views

Luracast Restler 3.0.1 via TYPO3 Restler 1.7.1 - Local File Inclusion

Luracast Restler 3.0.1 via TYPO3 Restler 1.7.1 is susceptible to local file inclusion in public/examples/resources/getsource.php. This could allow remote attackers to read arbitrary files via the file parameter. id: CVE-2017-15363 info: name: Luracast Restler 3.0.1 via TYPO3 Restler 1.7.1 - Local...

7.5CVSS7AI score0.15212EPSS
Exploits1References5
NVD
NVD
added yesterday5 views

CVE-2026-15305

Users were able to upload files with arbitrary MIME types to forms using FileUpload or ImageUpload elements with allowedMimeTypes configured. The restriction was not enforced server-side because the MimeTypeValidator was registered during form building before concrete form definition properties...

6.3CVSS
Exploits0References3
Vulnrichment
Vulnrichment
added yesterday5 views

CVE-2026-15305 TYPO3 CMS - Unrestricted File Upload in Form Framework

Users were able to upload files with arbitrary MIME types to forms using FileUpload or ImageUpload elements with allowedMimeTypes configured. The restriction was not enforced server-side because the MimeTypeValidator was registered during form building before concrete form definition properties...

6.3CVSS6.2AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added yesterday4 views

CVE-2026-15305

Users were able to upload files with arbitrary MIME types to forms using FileUpload or ImageUpload elements with allowedMimeTypes configured. The restriction was not enforced server-side because the MimeTypeValidator was registered during form building before concrete form definition properties...

6.3CVSS6.2AI score
Exploits0References4Affected Software1
Snyk
Snyk
added 2026/06/12 8:8 p.m.5 views

Missing Authorization

Overview typo3/cms-form is a Form Library, Plugin and Editor Affected versions of this package are vulnerable to Missing Authorization in the processing of form definition files by the Form Framework. An attacker can gain administrative privileges by uploading and using maliciously crafted files...

8.6CVSS6.1AI score0.00238EPSS
Exploits0References2
OSV
OSV
added 2026/06/12 8:8 p.m.9 views

GHSA-PJPJ-V387-X4VQ TYPO3 CMS has Broken Access Control in its Form Framework

Problem Backend users with access to the Form Framework were able to use files not ending in .form.yaml as form definitions, which were processed without denying the incorrect file extension. Maliciously crafted form definition files can be used to execute arbitrary SQL statements, allowing...

7.6CVSS6.2AI score0.00238EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/06/12 8:8 p.m.17 views

TYPO3 CMS has Broken Access Control in its Form Framework

Problem Backend users with access to the Form Framework were able to use files not ending in .form.yaml as form definitions, which were processed without denying the incorrect file extension. Maliciously crafted form definition files can be used to execute arbitrary SQL statements, allowing...

7.6CVSS6.1AI score0.00238EPSS
Exploits0References7Affected Software2
EUVD
EUVD
added 2026/06/12 8:8 p.m.22 views

EUVD-2026-35391

TYPO3 CMS has Broken Access Control in its Form Framework...

7.6CVSS5.2AI score0.00238EPSS
Exploits0References6
OSV
OSV
added 2026/06/12 8:8 p.m.13 views

GHSA-F34X-RX2W-7PM3 TYPO3 CMS has Broken Access Control in the Recycler Module

Problem Backend users with access to the Recycler module were able to restore soft-deleted records on pages or for tables they were not authorized to modify. Solution Update to TYPO3 versions 10.4.57 ELTS, 11.5.51 ELTS, 12.4.46 ELTS, 13.4.31 LTS, 14.3.3 LTS that fix the problem described. Credits...

5.3CVSS5.3AI score0.00238EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/06/12 8:8 p.m.13 views

TYPO3 CMS has Broken Access Control in the Recycler Module

Problem Backend users with access to the Recycler module were able to restore soft-deleted records on pages or for tables they were not authorized to modify. Solution Update to TYPO3 versions 10.4.57 ELTS, 11.5.51 ELTS, 12.4.46 ELTS, 13.4.31 LTS, 14.3.3 LTS that fix the problem described. Credits...

5.3CVSS5.2AI score0.00238EPSS
Exploits0References7Affected Software2
EUVD
EUVD
added 2026/06/12 8:8 p.m.14 views

EUVD-2026-35396

TYPO3 CMS has Broken Access Control in the Recycler Module...

5.3CVSS5.2AI score0.00238EPSS
Exploits0References6
OSV
OSV
added 2026/06/12 8:7 p.m.9 views

GHSA-3P42-W5CH-GG42 TYPO3 CMS has an Open Redirect Vulnerability via Core Utilities

Problem Applications that use GeneralUtility::sanitizeLocalUrl to allow only local URLs are vulnerable to open redirect attacks if the URL is used after it has passed the aforementioned sanitization checks. This enables attackers to redirect users to external content and carry out phishing attack...

5.3CVSS5.3AI score0.00294EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/12 8:7 p.m.11 views

EUVD-2026-35394

TYPO3 CMS has an Open Redirect Vulnerability via Core Utilities...

5.3CVSS5.2AI score0.00294EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/06/12 8:7 p.m.13 views

TYPO3 CMS has an Open Redirect Vulnerability via Core Utilities

Problem Applications that use GeneralUtility::sanitizeLocalUrl to allow only local URLs are vulnerable to open redirect attacks if the URL is used after it has passed the aforementioned sanitization checks. This enables attackers to redirect users to external content and carry out phishing attack...

5.3CVSS5.2AI score0.00294EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/06/12 8:7 p.m.11 views

GHSA-3V8V-4WG6-R7QH TYPO3 CMS: Destructive Actions on File Mount Folders

Problem Non-privileged backend users with file mount access were able to perform write operations move, delete, rename on folders representing the root of an active file mount due to missing authorization restrictions. Solution Update to TYPO3 versions 10.4.57 ELTS, 11.5.51 ELTS, 12.4.46 ELTS,...

7.2CVSS5.3AI score0.00238EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/12 8:7 p.m.13 views

EUVD-2026-35392

TYPO3 CMS: Destructive Actions on File Mount Folders...

7.2CVSS5.2AI score0.00238EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/06/12 8:7 p.m.14 views

TYPO3 CMS: Destructive Actions on File Mount Folders

Problem Non-privileged backend users with file mount access were able to perform write operations move, delete, rename on folders representing the root of an active file mount due to missing authorization restrictions. Solution Update to TYPO3 versions 10.4.57 ELTS, 11.5.51 ELTS, 12.4.46 ELTS,...

7.2CVSS5.2AI score0.00238EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/06/12 8:7 p.m.10 views

EUVD-2026-35192

TYPO3 HTML Sanitizer allows Cross-site Scripting...

5.1CVSS5.1AI score0.00366EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/06/12 8:7 p.m.15 views

TYPO3 HTML Sanitizer allows Cross-site Scripting

Namespace attributes are not encoded correctly during HTML serialization. This allows bypassing the cross-site scripting prevention mechanism of typo3/html-sanitizer before version 2.3.2. Credits to Doyensec in collaboration with Claude and Anthropic Research for reporting this vulnerability...

5.1CVSS4.9AI score0.00366EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder