6.4 Medium
AI Score
Confidence
High
typo3/cms-core is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to improper input sanitization in the Form Framework validation handling, which allows an attackers to inject malicious JavaScript.