Vulnerability DatabaseCVE-2026-47346
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2026-47346
Published:June 09, 2026
Updated:June 28, 2026
Backend users with file write permissions were able to upload form definition files with mixed-case extensions (e.g., .FORM.YAML) to bypass the Form Framework's upload restriction. Maliciously crafted form definition files can be used to execute arbitrary SQL statements, allowing attackers to escalate privileges by creating administrative backend user accounts. This issue affects TYPO3 CMS versions before 10.4.57, 11.0.0-11.5.50, 12.0.0-12.4.45, 13.0.0-13.4.30 and 14.0.0-14.3.2.
Affected Packages
typo3/cms-core (PHP):
Affected version(s) >=14.0.x-dev <14.3.3
Fix Suggestion:
Update to version 14.3.3
typo3/cms-form (PHP):
Affected version(s) >=10.2.x-dev <10.4.57
Fix Suggestion:
Update to version 10.4.57
typo3/cms-core (PHP):
Affected version(s) >=12.1.x-dev <12.4.46
Fix Suggestion:
Update to version 12.4.46
typo3/cms-core (PHP):
Affected version(s) >=11.1.x-dev <11.5.51
Fix Suggestion:
Update to version 11.5.51
typo3/cms-core (PHP):
Affected version(s) >=13.0.x-dev <13.4.31
Fix Suggestion:
Update to version 13.4.31
typo3/cms-form (PHP):
Affected version(s) >=14.0.x-dev <14.3.3
Fix Suggestion:
Update to version 14.3.3
typo3/cms-form (PHP):
Affected version(s) >=11.1.x-dev <11.5.51
Fix Suggestion:
Update to version 11.5.51
typo3/cms-core (PHP):
Affected version(s) >=10.2.x-dev <10.4.57
Fix Suggestion:
Update to version 10.4.57
typo3/cms-form (PHP):
Affected version(s) >=12.1.x-dev <12.4.46
Fix Suggestion:
Update to version 12.4.46
typo3/cms-form (PHP):
Affected version(s) >=13.0.x-dev <13.4.31
Fix Suggestion:
Update to version 13.4.31
Related Resources (7)
https://typo3.org/security/advisory/typo3-core-sa-2026-008
https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2026-47346.yaml
https://github.com/TYPO3/typo3
https://nvd.nist.gov/vuln/detail/CVE-2026-47346
https://github.com/TYPO3/typo3/security/advisories/GHSA-hwvq-2w67-rvxp
https://github.com/TYPO3/typo3/commit/2030617e6f273cee7b756c695f0a48a45a31eb47
https://github.com/TYPO3/typo3/commit/eb2b2251d90339d3ab55df3d4c0378ae0c780b45
Do you need more information?
Contact Us
CVSS v4
Base Score:
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
PRESENT
Privileges Required
LOW
User Interaction
NONE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
HIGH
Vulnerable System Availability
NONE
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
NONE
Weakness Type (CWE)
Improper Handling of Case Sensitivity
CWE-178
Missing Authorization
CWE-862
EPSS
Base Score:
0.25