| 2019-02-21 | Typo3 CMS Modern Guestbook tx_veguestbook_pi1 3.3.0 SQL Injection | Published |
| 2019-02-19 | Typo3 Calendar Base tx_pxkalender_pi1 2.0.0 SQL Injection / Database Disclosure | Published |
| 2019-01-04 | Typo3 CMS pw_highslide_gallery Extension 0.3.1 Database Disclosure | Published |
| 2019-01-04 | Typo3 CMS twwc_pages Extension 8.7.x Database Disclosure | Published |
| 2019-01-04 | Typo3 CMS Site Crawler Extension 6.1.2 Database Disclosure | Published |
| 2019-01-04 | Typo3 CMS YAG Themepack jQuery Extension 1.3.2 Database Disclosure | Published |
| 2019-01-04 | Typo3 CMS Static Info Tables Extension 6.7.3 Database Disclosure | Published |
| 2017-10-14 | Typo3 Restler 1.7.0 Local File Disclosure | Published |
| 2017-08-01 | TYPO3 Formhandler 2.4.0 Cross Site Scripting | Published |
| 2017-04-27 | TYPO3 News Module SQL Injection | Published |
| 2017-01-18 | TYPO3 CMS 2.0.3 Cross Site Scripting | Published |
| 2016-05-21 | TYPO3 6.2.19 / 7.6.4 RemoveXSS.php Filter Bypass | Published |
| 2015-09-15 | Typo3 CMS 6.2.14 / 4.5.40 Cross Site Scripting | Published |
| 2015-06-17 | TYPO3 Akronymmanager Extension 0.5.0 SQL Injection | Published |
| 2014-12-02 | TYPO3 Extension ke_dompdf 0.0.3 Remote Code Execution | Published |
| 2014-12-02 | TYPO3 Extension ke_questionnaire 2.5.2 Information Disclosure | Published |
| 2014-09-29 | Typo3 JobControl 2.14.0 Cross Site Scripting / SQL Injection | Published |
| 2014-04-30 | Typo3 3rd party extension si_bibtex SQL injection and persistent XSS | Published |
| 2014-02-25 | TYPO3 6.1.7 XSS / Disclosure / Shell Upload | Published |
| 2012-11-25 | TYPO3 CMS, TinyMCE, Liferay Portal, Drupal swfupload XSS | Published |
| 2012-06-08 | TYPO3 4.7 Cross Site Request Forgery | Published |
| 2012-01-09 | Typo3 v4.5-4.7 Remote Code Execution RFI/LFI | Published |
| 2011-01-02 | TYPO3 Unauthenticated Arbitrary File Retrieval | Published |
| 2008-07-02 | Multiple vulnerabilities in TYPO3 Core | Published |
| 2006-10-03 | Typo3 v4.x: XSS in extension Indexed Search v2.9.0 | Published |
| 2006-01-28 | File system path disclosure on TYPO3 Web Content Manager | Published |