| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-55921 | Cross-Site Request Forgery in Extension Manager Module in TYPO3 | TYPO3 | typo3 | High | 7.5 | 2025-01-14 19:36:32 | Deep Dive |
| CVE-2024-55922 | Cross-Site Request Forgery in Form Framework Module in TYPO3 | TYPO3 | typo3 | Medium | 5.4 | 2025-01-14 19:23:17 | Deep Dive |
| CVE-2024-55923 | Cross-Site Request Forgery in Indexed Search Module in TYPO3 | TYPO3 | typo3 | Medium | 4.3 | 2025-01-14 19:20:11 | Deep Dive |
| CVE-2024-55924 | Cross-Site Request Forgery in Scheduler Module in TYPO3 | TYPO3 | typo3 | High | 8.0 | 2025-01-14 19:16:47 | Deep Dive |
| CVE-2024-55945 | Cross-Site Request Forgery in DB Check Module in TYPO3 | TYPO3 | typo3 | Medium | 4.3 | 2025-01-14 19:14:34 | Deep Dive |
| CVE-2024-55891 | Information Disclosure via Exception Handling/Logger in TYPO3 | TYPO3 | typo3 | Low | 3.1 | 2025-01-14 19:11:59 | Deep Dive |
| CVE-2024-47780 | Information Disclosure in TYPO3 Page Tree | TYPO3 | typo3 | Low | 3.1 | 2024-10-08 17:57:22 | Deep Dive |
| CVE-2024-34358 | TYPO3 vulnerable to an Uncontrolled Resource Consumption in the ShowImageController | TYPO3 | typo3 | Medium | 5.3 | 2024-05-14 14:26:36 | Deep Dive |
| CVE-2024-34357 | TYPO3 vulnerable to Cross-Site Scripting in ShowImageController | TYPO3 | typo3 | Medium | 5.4 | 2024-05-14 14:13:12 | Deep Dive |
| CVE-2024-34356 | TYPO3 vulnerable to Cross-Site Scripting in the Form Manager Module | TYPO3 | typo3 | Medium | 5.4 | 2024-05-14 14:05:20 | Deep Dive |
| CVE-2024-34355 | TYPO3 vulnerable to an HTML Injection in the History Module | TYPO3 | typo3 | Low | 3.5 | 2024-05-14 14:01:33 | Deep Dive |
| CVE-2024-25118 | Information Disclosure of Hashed Passwords in TYPO3 Backend Forms | TYPO3 | typo3 | Medium | 4.3 | 2024-02-13 22:19:23 | Deep Dive |
| CVE-2024-25119 | Information Disclosure of Encryption Key in TYPO3 Install Tool | TYPO3 | typo3 | Medium | 4.9 | 2024-02-13 22:16:37 | Deep Dive |
| CVE-2024-25120 | Improper Access Control of Resources Referenced by t3:// URI Scheme in TYPO3 | TYPO3 | typo3 | Medium | 4.3 | 2024-02-13 22:15:13 | Deep Dive |
| CVE-2024-25121 | Improper Access Control Persisting File Abstraction Layer Entities via Data Handler in TYPO3 | TYPO3 | typo3 | High | 7.1 | 2024-02-13 22:14:41 | Deep Dive |
| CVE-2023-47125 | By-passing Cross-Site Scripting Protection in HTML Sanitizer | TYPO3 | html-sanitizer | Medium | 4.7 | 2023-11-14 20:07:56 | Deep Dive |
| CVE-2023-47126 | Information Disclosure in Install Tool in typo3/cms-install | TYPO3 | typo3 | Low | 3.7 | 2023-11-14 20:01:17 | Deep Dive |
| CVE-2023-47127 | Weak Authentication in Session Handling in typo3/cms-core | TYPO3 | typo3 | Medium | 4.2 | 2023-11-14 19:26:08 | Deep Dive |
| CVE-2023-38500 | By-passing Cross-Site Scripting Protection in HTML Sanitizer | TYPO3 | html-sanitizer | Medium | 4.7 | 2023-07-25 20:59:53 | Deep Dive |
| CVE-2023-38499 | typo3/cms-core Information Disclosure due to Out-of-scope Site Resolution | TYPO3 | typo3 | Low | 3.7 | 2023-07-25 20:54:42 | Deep Dive |