-
TYPO3-EXT-SA-2025-015: Broken Authentication in extension "Modules" (modules)
Categories: DevelopmentAdvisory type: TYPO3 ExtensionsRead moreIt has been discovered that the extension "Modules" (modules) is susceptible to Broken Authentication.
-
TYPO3-EXT-SA-2025-014: Vulnerability in bundled package in extension "Forms Export" (frp_form_answers)
Categories: DevelopmentAdvisory type: TYPO3 ExtensionsRead moreIt has been discovered that the extension "Forms Export" (frp_form_answers) bundles a vulnerable version of "phpoffice/phpspreadsheet", which is…
-
TYPO3-EXT-SA-2025-013: Vulnerability in bundled package in extension "Base Excel" (base_excel)
Categories: DevelopmentAdvisory type: TYPO3 ExtensionsRead moreIt has been discovered that the extension "Base Excel" (base_excel) bundles a vulnerable version of “phpoffice/phpspreadsheet“ which is susceptible to…
-
TYPO3-EXT-SA-2025-012: Cross-Site Scripting in extension "Form to Database" (form_to_database)
Categories: DevelopmentAdvisory type: TYPO3 ExtensionsRead moreIt has been discovered that the extension "Form to Database" (form_to_database) is susceptible to Cross-Site Scripting.
-
TYPO3-CORE-SA-2025-023: Information Disclosure via CSV Download
Categories: Development, TYPO3 CMSAdvisory type: TYPO3 CMSRead moreIt has been discovered that TYPO3 CMS is susceptible to information disclosure.
-
TYPO3-CORE-SA-2025-022: Information Disclosure in Workspaces Module
Categories: Development, TYPO3 CMSAdvisory type: TYPO3 CMSRead moreIt has been discovered that TYPO3 CMS is susceptible to information disclosure.
-
TYPO3-CORE-SA-2025-021: Broken Access Control in Backend AJAX Routes
Categories: Development, TYPO3 CMSAdvisory type: TYPO3 CMSRead moreIt has been discovered that TYPO3 CMS is susceptible to broken access control.
-
TYPO3-CORE-SA-2025-020: Information Disclosure via File Abstraction Layer
Categories: Development, TYPO3 CMSAdvisory type: TYPO3 CMSRead moreIt has been discovered that TYPO3 CMS is susceptible to information disclosure.
-
TYPO3-CORE-SA-2025-019: Insufficient Entropy in Password Generation
Categories: Development, TYPO3 CMSAdvisory type: TYPO3 CMSRead moreIt has been discovered that TYPO3 CMS is susceptible to insufficient entropy.
-
TYPO3-CORE-SA-2025-018: Denial of Service in TYPO3 Bookmark Toolbar
Categories: Development, TYPO3 CMSAdvisory type: TYPO3 CMSRead moreIt has been discovered that TYPO3 CMS is susceptible to denial of service.