Zurück zur CVE-Übersicht
CVE-2026-47350
NONERisk Signal Score0/100 — NIEDRIG
EPSS-Score
0%
Exploit-Wahrscheinlichkeit (30 Tage)
Beschreibung
Backend users were able to move records to a different page without having edit permissions on the source page. This issue affects TYPO3 CMS versions 13.0.0-13.4.30 and 14.0.0-14.3.2.
GitHub Advisories
GHSA-qcmw-6rm2-5x78MEDIUM
TYPO3 CMS has Broken Access Control in its DataHandler
composer/typo3/cms-core→ 13.4.31
GitHub Advisory