typo3 is vulnerable to information disclosure. The vulnerability exists because the library does not properly handle user-submitted YAML placeholder expressions in the site configuration backend module which allows an attacker to access sensitive information of the system. .
github.com/TYPO3-CMS/core/commit/3cc015cf2e7827aebe77e5c60653268077049839
github.com/TYPO3-CMS/core/commit/874e3193a12b9e75025ca3ae76b899c1fa6d4d98
github.com/TYPO3-CMS/core/commit/bed9651c5b2ee6ab4e1287b107e1c50793364d2a
github.com/TYPO3/typo3/commit/091735d63701224fcba913376a54578438bb194c
github.com/TYPO3/typo3/commit/49a3b33ee6b47f9160863da1d83fdf80d1998577
github.com/TYPO3/typo3/commit/e271621f627906265f8cc50287f2f03713c651fe
github.com/TYPO3/typo3/security/advisories/GHSA-8w3p-qh3x-6gjr