Security Advisories - PKSA-dmbp-4kzv-9s4r - Packagist

PKSA-dmbp-4kzv-9s4r Security Advisory

[MEDIUM] Cross-Site Scripting in Fluid Engine

PKSA-dmbp-4kzv-9s4r CVE-2020-15241 GHSA-7733-hjv6-4h47

Affected package: typo3/cms

Affected version: >=8.0.0,<8.7.25|>=9.0.0,<9.5.6

Reported by:
GitHub, FriendsOfPHP/security-advisories