It has been discovered that the extension "Event management and registration" (sf_event_mgt) is susceptible to Information Disclosure and Broken…

It has been discovered that the extension "Localization Manager" (l10nmgr) is susceptible to Information Disclosure.

It has been discovered that the extension "Kitodo.Presentation" (dlf) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Media Content Element" (mediace) is susceptible to Sensitive Information Disclosure.

It has been discovered that the extension "mm_forum" (mm_forum) is susceptible to Cross Site Scripting and CSRF.

It has been discovered that the extension "Google reCAPTCHA (v2/v3)" (jh_captcha) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Turn!" (turn) is susceptible to Remote Code Execution.

It has been discovered that the extension "typo3_forum" (typo3_forum) is susceptible to Broken Access Control.

It has been discovered that the extension "Faceted Search" (ke_search) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "SVG Sanitizer" (svg_sanitizer) is vulnerable to Cross-Site Scripting.