Cross-Site Scripting in Backend Modal Component

PKSA-yzt1-7625-ng3j

Affected package: typo3/cms-core

Affected version: >=8.0.0,<8.7.21|>=9.0.0,<9.5.2

Reported by:
FriendsOfPHP/security-advisories