6.2 Medium
AI Score
Confidence
High
typo3/cms is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to improper encoding of user input, allowing authenticated editors to inject arbitrary HTML or JavaScript.