Typo3 · Svg Sanitizer Extension For Typo3 · CVE-2020-11070
**Name of the Vulnerable Software and Affected Versions**
SVG Sanitizer extension for TYPO3 versions prior to 1.0.3
**Description**
The issue arises from the incorrect processing of slightly invalid or incomplete SVG markup, which is not properly sanitized. Despite the markup being invalid, it is still evaluated by browsers, leading to cross-site scripting.
**Recommendations**
For versions prior to 1.0.3, update to version 1.0.3 as soon as possible to resolve the issue.