It has been discovered that the extension "Grid Elements" (gridelements) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Adminer" (t3adminer) is susceptible to Server-side request forgery and Cross-Site Scripting.

It has been discovered that the extension "One is Enough Library" (oelib) is susceptible to SQL Injection.

It has been discovered that the extension "Seminar Manager" (seminars) is susceptible to SQL Injection.

It has been discovered that the extension "Job portal" (psvneo_jobfair) is susceptible to Remote Code Execution.

It has been discovered that the extension "Hardcoded text to Locallang" (mqk_locallangtools) is susceptible to File Content Injection.

It has been discovered that the extension "Varnishcache" (varnishcache) is susceptible to Insecure direct object reference.

It has been discovered that the extension "Bookdatabase" (extbookdatabase) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Kitodo.Presentation" (dlf) is susceptible to Server-side request forgery.

It has been discovered that the extension "Job Fair" (jobfair) is susceptible to Sensitive Data Exposure.