[MEDIUM] Cross-Site Scripting in Link Handling

PKSA-v9y4-y7z6-sjjg CVE-2019-12748 GHSA-r6fv-56gp-j3r4

Affected package: typo3/cms-core

Affected version: >=8.0.0,<8.7.27|>=9.0.0,<9.5.8

Reported by:
GitHub, FriendsOfPHP/security-advisories