Tag
high
threat
Multiple Vulnerabilities in Typo3 Leading to RCE, Privilege Escalation, and Data Compromise
3 rules 6 TTPs 5 CVEs 20 IOCsMultiple vulnerabilities discovered in Typo3 allow an attacker to achieve remote arbitrary code execution, privilege escalation, data confidentiality compromise, data integrity compromise, security policy bypass, remote indirect code injection (XSS), and SQL injection (SQLi).
exploited
Typo3 < 10.4.57 +4
web-vulnerability
rce
privilege-escalation
data-exfiltration
typo3
cert-fr
3r
6t
5c
20i
high
advisory
Multiple Vulnerabilities in TYPO3 Extensions
2 rules 1 TTPMultiple vulnerabilities in TYPO3 extensions allow an attacker to execute arbitrary program code, conduct SQL injection attacks, disclose information, and circumvent security measures.
typo3 extensions
typo3
vulnerability
sqlinjection
codeexecution
2r
1t
high
advisory
TYPO3 CMS 14.2.0 Stores Passwords in Cleartext
1 rule 1 TTPTYPO3 CMS version 14.2.0 stores passwords in cleartext in the `uc` and `user_settings` fields of the `be_users` database table when users change their credentials in the backend user settings module.
CMS Backend
typo3
cleartext-password
credential-access
cve-2026-6553
1r
1t