CVE Daily
← All tags

Tag: TYPO3 CMS

All CVEs associated with "TYPO3 CMS". Page 1/1 • 3 CVEs.

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0
2025-07-22
Medium

CVE-2025-7900

The femanager extension for TYPO3 allows Insecure Direct Object Reference resulting in unauthorized modification of userdata. This issue affects femanager version 6.4.1 and below, 7.0.0 to 7.5.2 and…

CVSS: 5.3 CWE: CWE-639
Read more
Medium

CVE-2025-7899

The powermail extension for TYPO3 allows Insecure Direct Object Reference resulting in download of arbitrary files from the webserver. This issue affects powermail version 12.0.0 up to 12.5.2 and ver…

CVSS: 6.0 CWE: CWE-639
Read more
2025-05-21
Medium

CVE-2025-48206

The ns_backup extension through 13.0.0 for TYPO3 allows XSS.

CVSS: 6.1 CWE: CWE-79
Read more