EPSS
Percentile
22.7%
The extension fails to properly encode user input for output in HTML context. A TYPO3 backend user account is required to exploit the vulnerability.
github.com/brotkrueml/schema
github.com/FriendsOfPHP/security-advisories/blob/master/brotkrueml/schema/CVE-2022-33154.yaml
nvd.nist.gov/vuln/detail/CVE-2022-33154
typo3.org/security/advisory/typo3-ext-sa-2022-012