TYPO3 Fluid Engine
By the Year
In 2024 there have been 0 vulnerabilities in TYPO3 Fluid Engine . Fluid Engine did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 1 | 6.10 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Fluid Engine vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent TYPO3 Fluid Engine Security Vulnerabilities
TYPO3 Fluid Engine (package `typo3fluid/fluid`) before versions 2.0.5
CVE-2020-15241
6.1 - Medium
- October 08, 2020
TYPO3 Fluid Engine (package `typo3fluid/fluid`) before versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like `{showFullName ? fullName : defaultValue}`. Updated versions of this package are bundled in following TYPO3 (`typo3/cms-core`) versions as well: TYPO3 v8.7.25 (using `typo3fluid/fluid` v2.5.4) and TYPO3 v9.5.6 (using `typo3fluid/fluid` v2.6.1).
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for TYPO3 or by TYPO3? Click the Watch button to subscribe.