typo3/html-sanitizer Security Advisories for v1.5.0 (4)
-
[LOW] TYPO3-CORE-SA-2026-006: TYPO3 HTML Sanitizer allows Cross-Site Scripting
PKSA-5mxx-9w1m-fqfb CVE-2026-47344 GHSA-jvf5-rxvv-3mcg
Affected version: <2.3.2
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] TYPO3-CORE-SA-2026-006: TYPO3 HTML Sanitizer allows Cross-Site Scripting
PKSA-7jn3-yc49-35c6 CVE-2026-47345 GHSA-p5j5-4j3q-8mq8
Affected version: <2.3.2
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Bypassing Cross-Site Scripting Protection in TYPO3 HTML Sanitizer
PKSA-f8gj-zjw3-t7yc CVE-2023-47125 GHSA-mm79-jhqm-9j54
Affected version: >=2.0.0,<=2.1.3|>=1.0.0,<=1.5.2
Reported by:
GitHub -
[MEDIUM] By-passing Cross-Site Scripting Protection in HTML Sanitizer
PKSA-7fkk-q973-4xmn CVE-2023-38500 GHSA-59jf-3q9v-rh6g
Affected version: >=2.0.0,<2.1.2|>=1.0.0,<1.5.1
Reported by:
GitHub