CVE-2022-31048 : Security Advisory and Response
Learn about the cross-site scripting vulnerability in TYPO3's Form Framework versions prior to 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11, impacting web content management.
The Form Designer backend module of the Form Framework in TYPO3 versions prior to 8.7.47 ELTS, 9.5.34 ELTS, 10.4.29, and 11.5.11 is vulnerable to cross-site scripting, requiring a valid backend user account for exploitation. This article provides insights into the CVE-2022-31048 vulnerability in TYPO3.