Back to VulnFeed / CVE-2026-47344
root@hackertop:~/vulnfeed/CVE-2026-47344#
CVE-2026-47344 LOW CVE ⚠ Unpatched · Zero-day◉ PoC 公开 Lifecycle 4/7

TYPO3 HTML Sanitizer up to 2.3.1 cross site scripting

HTML Sanitizer 26d ago Impact pending confirmation
LIFECYCLE
3.4 CVSS
Vulnerability Detail Mitigation Lifecycle CVSS Assessment
Vulnerability Description
A vulnerability was found in TYPO3 HTML Sanitizer up to 2.3.1 (Content Management System). It has been classified as problematic. Affected is some unknown functionality. Upgrading to version 2.3.2 eliminates this vulnerability.
Root Cause Analysis
CWE is classifying the issue as CWE-79. The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Impact: This is going to have an impact on integrity.

Countermeasure: Upgrading to version 2.3.2 eliminates this vulnerability.
Validation (PoC/EXP) - Looking for Contributors
No public PoC yet

Public validation traces already exist. Community contributors can extend them with richer reproduction content.

Contribute Your PoC/EXP
Log in to contribute PoC/EXP content. Log in
Back to VulnFeed
CVE-2026-47344 · CVSS 3.4 · Active Threat