TYPO3 Fluid Engine
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in TYPO3 Fluid Engine.
By the Year
In 2026 there have been 0 vulnerabilities in TYPO3 Fluid Engine. Fluid Engine did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 1 | 6.10 |
It may take a day or so for new Fluid Engine vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent TYPO3 Fluid Engine Security Vulnerabilities
TYPO3 Fluid Engine (package `typo3fluid/fluid`) before versions 2.0.5
CVE-2020-15241
6.1 - Medium
- October 08, 2020
TYPO3 Fluid Engine (package `typo3fluid/fluid`) before versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like `{showFullName ? fullName : defaultValue}`. Updated versions of this package are bundled in following TYPO3 (`typo3/cms-core`) versions as well: TYPO3 v8.7.25 (using `typo3fluid/fluid` v2.5.4) and TYPO3 v9.5.6 (using `typo3fluid/fluid` v2.6.1).
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for TYPO3 Fluid Engine or by TYPO3? Click the Watch button to subscribe.
