Stefan Kaifer

**Name of the Vulnerable Software and Affected Versions** TYPO3 extension "LDAP / SSO Authentication" (ig ldap sso auth) version 2.0.0 **Description** The issue is related to an Improper Authentication vulnerability in the "LDAP / SSO Authentication" extension for TYPO3. **Recommendations** For version 2.0.0 of the "LDAP / SSO Authentication" extension, update to a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 Content Rating Extbase extension versions 2.0.3 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. **Recommendations** For versions 2.0.3 and earlier, update to a version later than 2.0.3 to resolve the issue.