6.4 Medium
AI Score
Confidence
High
typo3/cms is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to improper encoding of editor input in the search result view, allowing authenticated editors to inject arbitrary HTML.