Typo3 Extension "Faceted Search"
3 CVEs affecting Typo3 Extension "Faceted Search". Latest disclosed: 2026-05-19. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-46724 | | 2026-05-19 | The file indexer does not normalize the configured directory path. A backend user with permission to edit indexer configurations can index documents from arbit… | |
CVE-2026-46723 | | 2026-05-19 | The additional_tables configuration of the page and tt_content indexers accepts arbitrary table and field names. A backend user with permission to edit indexer… | |
CVE-2026-46722 | | 2026-05-19 | The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause loc… |