Typo3 · Mm Forum · CVE-2020-15516
**Name of the Vulnerable Software and Affected Versions**
mm forum extension for TYPO3 versions through 1.9.5
**Description**
The issue allows for XSS that can be exploited via CSRF.
**Recommendations**
For versions through 1.9.5, update to a version later than 1.9.5 to resolve the issue.