Peter Schuler

**Name of the Vulnerable Software and Affected Versions** TYPO3 versions prior to 10.4.46 ELTS TYPO3 versions prior to 11.5.40 LTS TYPO3 versions prior to 12.4.21 LTS TYPO3 versions prior to 13.3.1 **Description** Backend users could see items in the backend page tree without having access if the mounts pointed to pages restricted for their user/group, or if no mounts were configured but the pages allowed access to "everybody." However, affected users could not manipulate these pages. **Recommendations** Update to version 10.4.46 ELTS to resolve the issue. Update to version 11.5.40 LTS to resolve the issue. Update to version 12.4.21 LTS to resolve the issue. Update to version 13.3.1 to resolve the issue.