{"id":"CVE-2022-33155","details":"The ameos_tarteaucitron (aka AMEOS - TarteAuCitron GDPR cookie banner and tracking management / French RGPD compatible) extension before 1.2.23 for TYPO3 allows XSS.","aliases":["GHSA-4vr9-33fv-mg6r"],"modified":"2026-03-14T11:47:16.305802Z","published":"2022-07-12T22:15:08.280Z","references":[{"type":"FIX","url":"https://typo3.org/security/advisory/typo3-ext-sa-2022-013"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ameos/ameos_tarteaucitron","events":[{"introduced":"0"},{"fixed":"63528e80fc2a68e29ce5980cacda3d8fcbffda9d"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.2.23"}]}}],"versions":["1.1.0","1.2.0","1.2.1","1.2.10","1.2.11","1.2.12","1.2.13","1.2.14","1.2.15","1.2.16","1.2.17","1.2.18","1.2.19","1.2.2","1.2.20","1.2.21","1.2.22","1.2.3","1.2.6","1.2.7","1.2.8","1.2.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-33155.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}]}