[MEDIUM] TYPO3-CORE-SA-2026-011: Broken Access Control in Recycler

PKSA-bzt2-2962-49bj CVE-2026-47349 GHSA-f34x-rx2w-7pm3

Affected package: typo3/cms-core

Affected version: <10.4.57|>=11.0.0,<11.5.51|>=12.0.0,<12.4.46|>=13.0.0,<13.4.31|>=14.0.0,<14.3.3

Reported by:
GitHub, FriendsOfPHP/security-advisories