TYPO3 is susceptible to Cross-Site Flashing

PKSA-yxxk-7kcz-vv2r

Affected package: typo3/cms

Affected version: >=6.2.0,<6.2.16

Reported by:
FriendsOfPHP/security-advisories