CVE-2025-47940
- EPSS 0.05%
- Veröffentlicht 20.05.2025 14:15:50
- Zuletzt bearbeitet 03.09.2025 17:24:07
TYPO3 is an open source, PHP based web content management system. Starting in version 10.0.0 and prior to versions 10.4.50 ELTS, 11.5.44 ELTS, 12.4.31 LTS, and 13.4.12 LTS, administrator-level backend users without system maintainer privileges can es...
CVE-2025-47939
- EPSS 0.03%
- Veröffentlicht 20.05.2025 14:00:07
- Zuletzt bearbeitet 03.09.2025 17:25:35
TYPO3 is an open source, PHP based web content management system. By design, the file management module in TYPO3’s backend user interface has historically allowed the upload of any file type, with the exception of those that are directly executable i...
CVE-2025-47938
- EPSS 0.04%
- Veröffentlicht 20.05.2025 13:49:39
- Zuletzt bearbeitet 03.09.2025 17:26:46
TYPO3 is an open source, PHP based web content management system. Starting in version 9.0.0 and prior to versions 9.5.51 ELTS, 10.4.50 ELTS, 11.5.44 ELTS, 12.4.31 LTS, and 13.4.12 LTS, the backend user management interface allows password changes wit...
CVE-2025-47937
- EPSS 0.03%
- Veröffentlicht 20.05.2025 13:47:48
- Zuletzt bearbeitet 03.09.2025 17:28:08
TYPO3 is an open source, PHP based web content management system. Starting in version 9.0.0 and prior to versions 9.5.51 ELTS, 10.4.50 ELTS, 11.5.44 ELTS, 12.4.31 LTS, and 13.4.12 LTS, when performing a database query involving multiple tables throug...
CVE-2025-47936
- EPSS 0.03%
- Veröffentlicht 20.05.2025 13:23:52
- Zuletzt bearbeitet 03.09.2025 17:30:42
TYPO3 is an open source, PHP based web content management system. In versions on the 12.x branch prior to 12.4.31 LTS and the 13.x branch prior to 13.4.2 LTS, Webhooks are inherently vulnerable to Cross-Site Request Forgery (CSRF), which can be explo...
CVE-2024-55922
- EPSS 0.05%
- Veröffentlicht 14.01.2025 20:15:30
- Zuletzt bearbeitet 26.08.2025 19:35:01
TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery (CSRF). ...
CVE-2024-55923
- EPSS 0.05%
- Veröffentlicht 14.01.2025 20:15:30
- Zuletzt bearbeitet 26.08.2025 19:35:09
TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery (CSRF). ...
- EPSS 0.08%
- Veröffentlicht 14.01.2025 20:15:30
- Zuletzt bearbeitet 26.08.2025 19:35:20
TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery (CSRF). ...
CVE-2024-55945
- EPSS 0.07%
- Veröffentlicht 14.01.2025 20:15:30
- Zuletzt bearbeitet 26.08.2025 19:35:45
TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery (CSRF). ...
CVE-2024-55893
- EPSS 0.1%
- Veröffentlicht 14.01.2025 20:15:29
- Zuletzt bearbeitet 26.08.2025 19:00:50
TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery (CSRF). ...