TYPO3-CORE-SA-2022-017: By-passing Cross-Site Scripting Protection in HTML Sanitizer

PKSA-qbn4-sj3q-rvvx CVE-2022-23499

Affected package: typo3/cms-core

Affected version: >=10.0.0,<10.4.33|>=11.0.0,<11.5.20|>=12.0.0,<12.1.1

Reported by:
FriendsOfPHP/security-advisories