[TASK] TYPO3 housekeeping

* added CVEs were applicable * streamlined & fixed outdated links
FriendsOfPHP · Jul 29, 2021 · f69efb7 · f69efb7
1 parent cf8e38c
commit f69efb7
Show file tree

Hide file tree

Showing 139 changed files with 276 additions and 204 deletions.
diff --git a/typo3/cms-core/2018-07-12-1.yaml b/typo3/cms-core/2018-07-12-1.yaml
@@ -1,5 +1,5 @@
 title:     Authentication Bypass in TYPO3 CMS
-link:      https://typo3.org/security/advisory/typo3-core-sa-2018-001/
+link:      https://typo3.org/security/advisory/typo3-core-sa-2018-001
 branches:
     8.x:
         time:     2018-07-12 09:34:56

diff --git a/typo3/cms-core/2018-07-12-2.yaml b/typo3/cms-core/2018-07-12-2.yaml
@@ -1,5 +1,5 @@
 title:     Insecure Deserialization & Arbitrary Code Execution in TYPO3 CMS
-link:      https://typo3.org/security/advisory/typo3-core-sa-2018-002/
+link:      https://typo3.org/security/advisory/typo3-core-sa-2018-002
 branches:
     8.x:
         time:     2018-07-12 09:34:56

diff --git a/typo3/cms-core/2018-07-12-3.yaml b/typo3/cms-core/2018-07-12-3.yaml
@@ -1,5 +1,5 @@
 title:     Privilege Escalation & SQL Injection in TYPO3 CMS
-link:      https://typo3.org/security/advisory/typo3-core-sa-2018-003/
+link:      https://typo3.org/security/advisory/typo3-core-sa-2018-003
 branches:
     8.x:
         time:     2018-07-12 09:34:56

diff --git a/typo3/cms-core/2018-07-12-4.yaml b/typo3/cms-core/2018-07-12-4.yaml
@@ -1,5 +1,5 @@
 title:     Insecure Deserialization in TYPO3 CMS
-link:      https://typo3.org/security/advisory/typo3-core-sa-2018-004/
+link:      https://typo3.org/security/advisory/typo3-core-sa-2018-004
 branches:
     8.x:
         time:     2018-07-12 09:34:56

diff --git a/typo3/cms-core/2018-12-11-1.yaml b/typo3/cms-core/2018-12-11-1.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Online Media Asset Rendering'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-006/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-006'
 branches:
     8.x:
         time: '2018-12-11 09:56:06'

diff --git a/typo3/cms-core/2018-12-11-2.yaml b/typo3/cms-core/2018-12-11-2.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Backend Modal Component'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-007/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-007'
 branches:
     8.x:
         time: '2018-12-11 09:56:12'

diff --git a/typo3/cms-core/2018-12-11-3.yaml b/typo3/cms-core/2018-12-11-3.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Frontend User Login'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-008/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-008'
 branches:
     8.x:
         time: '2018-12-11 09:56:19'

diff --git a/typo3/cms-core/2018-12-11-4.yaml b/typo3/cms-core/2018-12-11-4.yaml
@@ -1,5 +1,5 @@
 title: 'Security Misconfiguration in Install Tool Cookie'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-009/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-009'
 branches:
     8.x:
         time: '2018-12-11 09:56:26'

diff --git a/typo3/cms-core/2018-12-11-5.yaml b/typo3/cms-core/2018-12-11-5.yaml
@@ -1,5 +1,5 @@
 title: 'Information Disclosure in Install Tool'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-010/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-010'
 branches:
     8.x:
         time: '2018-12-11 09:56:32'

diff --git a/typo3/cms-core/2018-12-11-6.yaml b/typo3/cms-core/2018-12-11-6.yaml
@@ -1,5 +1,5 @@
 title: 'Denial of Service in Online Media Asset Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-011/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-011'
 branches:
     8.x:
         time: '2018-12-11 09:56:38'

diff --git a/typo3/cms-core/2018-12-11-7.yaml b/typo3/cms-core/2018-12-11-7.yaml
@@ -1,5 +1,5 @@
 title: 'Denial of Service in Frontend Record Registration'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-012/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-012'
 branches:
     8.x:
         time: '2018-12-11 09:56:45'

diff --git a/typo3/cms-core/2019-01-22-1.yaml b/typo3/cms-core/2019-01-22-1.yaml
@@ -1,5 +1,5 @@
 title: 'Information Disclosure of Installed Extensions'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-001/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-001'
 branches:
     8.x:
         time: '2019-01-22 08:41:04'

diff --git a/typo3/cms-core/2019-01-22-2.yaml b/typo3/cms-core/2019-01-22-2.yaml
@@ -1,5 +1,5 @@
 title: 'Security Misconfiguration for Backend User Accounts'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-002/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-002'
 branches:
     8.x:
         time: '2019-01-22 08:41:12'

diff --git a/typo3/cms-core/2019-01-22-3.yaml b/typo3/cms-core/2019-01-22-3.yaml
@@ -1,5 +1,5 @@
 title: 'Broken Access Control in Localization Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-003/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-003'
 branches:
     8.x:
         time: '2019-01-22 08:41:19'

diff --git a/typo3/cms-core/2019-01-22-4.yaml b/typo3/cms-core/2019-01-22-4.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Fluid ViewHelpers'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-005/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-005'
 branches:
     8.x:
         time: '2019-01-22 08:41:26'

diff --git a/typo3/cms-core/2019-01-22-6.yaml b/typo3/cms-core/2019-01-22-6.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Form Framework'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-007/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-007'
 branches:
     8.x:
         time: '2019-01-22 08:41:41'

diff --git a/typo3/cms-core/2019-01-22-7.yaml b/typo3/cms-core/2019-01-22-7.yaml
@@ -1,5 +1,5 @@
 title: 'Arbitrary Code Execution via File List Module'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-008/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-008'
 branches:
     8.x:
         time: '2019-01-22 08:41:47'

diff --git a/typo3/cms-core/2019-01-22-8.yaml b/typo3/cms-core/2019-01-22-8.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Language Pack Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-004/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-004'
 branches:
     9.x:
         time: '2019-01-22 08:42:09'

diff --git a/typo3/cms-core/2019-05-07-2.yaml b/typo3/cms-core/2019-05-07-2.yaml
@@ -1,5 +1,5 @@
 title: 'Security Misconfiguration in User Session Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-011/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-011'
 branches:
     8.x:
         time: '2019-05-07 09:42:07'

diff --git a/typo3/cms-core/2019-05-07-4.yaml b/typo3/cms-core/2019-05-07-4.yaml
@@ -1,5 +1,5 @@
 title: 'Information Disclosure in Page Tree'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-009/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-009'
 branches:
     9.x:
         time: '2019-05-07 09:42:43'

diff --git a/typo3/cms-core/2019-05-07-5.yaml b/typo3/cms-core/2019-05-07-5.yaml
@@ -1,5 +1,5 @@
 title: 'Information Disclosure in User Authentication'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-010/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-010'
 branches:
     9.x:
         time: '2019-05-07 09:43:01'

diff --git a/typo3/cms-core/2019-06-25-1.yaml b/typo3/cms-core/2019-06-25-1.yaml
@@ -1,5 +1,5 @@
 title: 'Information Disclosure in Backend User Interface'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-014/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-014'
 branches:
     8.x:
         time: '2019-06-25 06:38:40'

diff --git a/typo3/cms-core/2019-06-25-3.yaml b/typo3/cms-core/2019-06-25-3.yaml
@@ -1,5 +1,5 @@
 title: 'Security Misconfiguration in Frontend Session Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-018/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-018'
 branches:
     8.x:
         time: '2019-06-25 06:39:05'

diff --git a/typo3/cms-core/2019-06-25-4.yaml b/typo3/cms-core/2019-06-25-4.yaml
@@ -1,5 +1,5 @@
 title: 'Arbitrary Code Execution and Cross-Site Scripting in Backend API'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-019/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-019'
 branches:
     8.x:
         time: '2019-06-25 06:39:18'

diff --git a/typo3/cms-core/2019-06-25-7.yaml b/typo3/cms-core/2019-06-25-7.yaml
@@ -1,5 +1,5 @@
 title: 'Broken Access Control in Import Module'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-017/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-017'
 branches:
     9.x:
         time: '2019-06-25 06:40:18'

diff --git a/typo3/cms-core/2019-12-17-1.yaml b/typo3/cms-core/2019-12-17-1.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Form Framework validation handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-021/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-021'
 branches:
     10.x:
         time: '2019-12-17 09:52:04'

diff --git a/typo3/cms-core/2019-12-17-2.yaml b/typo3/cms-core/2019-12-17-2.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Link Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-022/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-022'
 branches:
     10.x:
         time: '2019-12-17 09:52:11'

diff --git a/typo3/cms-core/2019-12-17-3.yaml b/typo3/cms-core/2019-12-17-3.yaml
@@ -1,5 +1,5 @@
 title: 'Cross-Site Scripting in Filelist Module'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-023/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-023'
 branches:
     10.x:
         time: '2019-12-17 09:52:17'

diff --git a/typo3/cms-core/2019-12-17-7.yaml b/typo3/cms-core/2019-12-17-7.yaml
@@ -1,5 +1,5 @@
 title: 'Possible Insecure Deserialization in Extbase Request Handling'
-link: 'https://typo3.org/security/advisory/typo3-psa-2019-011/'
+link: 'https://typo3.org/security/advisory/typo3-psa-2019-011'
 branches:
     8.x:
         time: '2019-12-17 09:50:20'

diff --git a/typo3/cms-core/2019-01-22-5.yaml → typo3/cms-core/CVE-2018-14041.yaml b/typo3/cms-core/2019-01-22-5.yaml → typo3/cms-core/CVE-2018-14041.yaml
@@ -1,5 +1,6 @@
 title: 'Cross-Site Scripting in Bootstrap CSS toolkit'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-006/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-006'
+cve: CVE-2018-14041
 branches:
     8.x:
         time: '2019-01-22 08:41:33'

diff --git a/typo3/cms-core/2018-12-11-8.yaml → typo3/cms-core/CVE-2018-17960.yaml b/typo3/cms-core/2018-12-11-8.yaml → typo3/cms-core/CVE-2018-17960.yaml
@@ -1,5 +1,6 @@
 title: 'Cross-Site Scripting in CKEditor'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-005/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2018-005'
+cve: CVE-2018-17960
 branches:
     8.x:
         time: '2018-12-11 09:55:56'

diff --git a/typo3/cms-core/2019-06-25-6.yaml → typo3/cms-core/CVE-2019-10912.yaml b/typo3/cms-core/2019-06-25-6.yaml → typo3/cms-core/CVE-2019-10912.yaml
@@ -1,5 +1,6 @@
 title: 'Possible deserialization side-effects in symfony/cache'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-016/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-016'
+cve: CVE-2019-10912
 branches:
     9.x:
         time: '2019-06-25 06:40:06'

diff --git a/typo3/cms-core/2019-05-07-3.yaml → typo3/cms-core/CVE-2019-11832.yaml b/typo3/cms-core/2019-05-07-3.yaml → typo3/cms-core/CVE-2019-11832.yaml
@@ -1,5 +1,6 @@
 title: 'Possible Arbitrary Code Execution in Image Processing'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-012/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-012'
+cve: CVE-2019-11832
 branches:
     8.x:
         time: '2019-05-07 09:42:26'

diff --git a/typo3/cms-core/2019-06-25-5.yaml → typo3/cms-core/CVE-2019-12747.yaml b/typo3/cms-core/2019-06-25-5.yaml → typo3/cms-core/CVE-2019-12747.yaml
@@ -1,5 +1,6 @@
 title: 'Insecure Deserialization in TYPO3 CMS'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-020/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-020'
+cve: CVE-2019-12747
 branches:
     8.x:
         time: '2019-06-25 06:39:30'

diff --git a/typo3/cms-core/2019-06-25-2.yaml → typo3/cms-core/CVE-2019-12748.yaml b/typo3/cms-core/2019-06-25-2.yaml → typo3/cms-core/CVE-2019-12748.yaml
@@ -1,5 +1,6 @@
 title: 'Cross-Site Scripting in Link Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-015/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-015'
+cve: CVE-2019-12748
 branches:
     8.x:
         time: '2019-06-25 06:38:52'

diff --git a/typo3/cms-core/2019-12-17-4.yaml → typo3/cms-core/CVE-2019-19848.yaml b/typo3/cms-core/2019-12-17-4.yaml → typo3/cms-core/CVE-2019-19848.yaml
@@ -1,5 +1,6 @@
 title: 'Directory Traversal on ZIP extraction'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-024/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-024'
+cve: CVE-2019-19848
 branches:
     10.x:
         time: '2019-12-17 09:52:24'

diff --git a/typo3/cms-core/2019-12-17-6.yaml → typo3/cms-core/CVE-2019-19849.yaml b/typo3/cms-core/2019-12-17-6.yaml → typo3/cms-core/CVE-2019-19849.yaml
@@ -1,5 +1,6 @@
 title: 'Insecure Deserialization in Query Generator &amp; Query View'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-026/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-026'
+cve: CVE-2019-19849
 branches:
     10.x:
         time: '2019-12-17 09:52:37'

diff --git a/typo3/cms-core/2019-12-17-5.yaml → typo3/cms-core/CVE-2019-19850.yaml b/typo3/cms-core/2019-12-17-5.yaml → typo3/cms-core/CVE-2019-19850.yaml
@@ -1,5 +1,6 @@
 title: 'SQL Injection in low-level Query Generator'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-025/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-025'
+cve: CVE-2019-19850
 branches:
     10.x:
         time: '2019-12-17 09:52:30'

diff --git a/typo3/cms-core/2020-05-12-1.yaml → typo3/cms-core/CVE-2020-11063.yaml b/typo3/cms-core/2020-05-12-1.yaml → typo3/cms-core/CVE-2020-11063.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-001: Information Disclosure in Password Reset'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-001/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-001'
+cve: CVE-2020-11063
 branches:
     10.x:
         time: '2020-05-12 09:21:43'

diff --git a/typo3/cms-core/2020-05-12-6.yaml → typo3/cms-core/CVE-2020-11064.yaml b/typo3/cms-core/2020-05-12-6.yaml → typo3/cms-core/CVE-2020-11064.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-002: Cross-Site Scripting in Form Engine'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-002/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-002'
+cve: CVE-2020-11064
 branches:
     10.x:
         time: '2020-05-12 09:30:56'

diff --git a/typo3/cms-core/2020-05-12-2.yaml → typo3/cms-core/CVE-2020-11065.yaml b/typo3/cms-core/2020-05-12-2.yaml → typo3/cms-core/CVE-2020-11065.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-003: Cross-Site Scripting in Link Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-003/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-003'
+cve: CVE-2020-11065
 branches:
     10.x:
         time: '2020-05-12 09:21:59'

diff --git a/typo3/cms-core/2020-05-12-3.yaml → typo3/cms-core/CVE-2020-11066.yaml b/typo3/cms-core/2020-05-12-3.yaml → typo3/cms-core/CVE-2020-11066.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-004: Class destructors causing side-effects when being unserialized'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-004/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-004'
+cve: CVE-2020-11066
 branches:
     10.x:
         time: '2020-05-12 09:22:06'

diff --git a/typo3/cms-core/2020-05-12-4.yaml → typo3/cms-core/CVE-2020-11067.yaml b/typo3/cms-core/2020-05-12-4.yaml → typo3/cms-core/CVE-2020-11067.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-005: Insecure Deserialization in Backend User Settings'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-005/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-005'
+cve: CVE-2020-11067
 branches:
     10.x:
         time: '2020-05-12 09:22:12'

diff --git a/typo3/cms-core/2020-05-12-5.yaml → typo3/cms-core/CVE-2020-11069.yaml b/typo3/cms-core/2020-05-12-5.yaml → typo3/cms-core/CVE-2020-11069.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-006: Same-Site Request Forgery to Backend User Interface'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-006/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-006'
+cve: CVE-2020-11069
 branches:
     10.x:
         time: '2020-05-12 09:22:19'

diff --git a/typo3/cms-core/2020-07-28-2.yaml → typo3/cms-core/CVE-2020-15098.yaml b/typo3/cms-core/2020-07-28-2.yaml → typo3/cms-core/CVE-2020-15098.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-008: Sensitive Information Disclosure'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-008/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-008'
+cve: CVE-2020-15098
 branches:
     10.x:
         time: '2020-07-28 08:19:06'

diff --git a/typo3/cms-core/2020-07-28-1.yaml → typo3/cms-core/CVE-2020-15099.yaml b/typo3/cms-core/2020-07-28-1.yaml → typo3/cms-core/CVE-2020-15099.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-007: Potential Privilege Escalation'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-007/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-007'
+cve: CVE-2020-15099
 branches:
     10.x:
         time: '2020-07-28 08:18:47'

diff --git a/typo3/cms-core/2019-05-07-1.yaml → typo3/cms-core/CVE-2020-15241.yaml b/typo3/cms-core/2019-05-07-1.yaml → typo3/cms-core/CVE-2020-15241.yaml
@@ -1,5 +1,6 @@
 title: 'Cross-Site Scripting in Fluid Engine'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-013/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2019-013'
+cve: CVE-2020-15241
 branches:
     8.x:
         time: '2019-05-07 09:34:18'

diff --git a/typo3/cms-core/2020-11-17-2.yaml → typo3/cms-core/CVE-2020-26227.yaml b/typo3/cms-core/2020-11-17-2.yaml → typo3/cms-core/CVE-2020-26227.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-010: Cross-Site Scripting in Fluid view helpers'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-010/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-010'
+cve: CVE-2020-26227
 branches:
     10.x:
         time: '2020-11-17 08:51:00'
@@ -8,6 +9,6 @@ branches:
         time: '2020-11-17 08:49:54'
         versions: ['>=9.0.0', '<9.5.23']
     8.x:
-      time: '2020-11-17 08:55:33'
-      versions: ['>=8.7.0', '<8.7.38']
+        time: '2020-11-17 08:55:33'
+        versions: ['>=8.7.0', '<8.7.38']
 reference: 'composer://typo3/cms-core'
diff --git a/typo3/cms-core/2020-11-17-3.yaml → typo3/cms-core/CVE-2020-26228.yaml b/typo3/cms-core/2020-11-17-3.yaml → typo3/cms-core/CVE-2020-26228.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-011: Cleartext storage of session identifier'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-011/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-011'
+cve: CVE-2020-26228
 branches:
     10.x:
         time: '2020-11-17 08:51:11'
@@ -8,6 +9,6 @@ branches:
         time: '2020-11-17 08:50:08'
         versions: ['>=9.0.0', '<9.5.23']
     8.x:
-      time: '2020-11-17 08:55:33'
-      versions: ['>=8.7.0', '<8.7.38']
+        time: '2020-11-17 08:55:33'
+        versions: ['>=8.7.0', '<8.7.38']
 reference: 'composer://typo3/cms-core'
diff --git a/typo3/cms-core/2020-11-17-4.yaml → typo3/cms-core/CVE-2020-26229.yaml b/typo3/cms-core/2020-11-17-4.yaml → typo3/cms-core/CVE-2020-26229.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2020-012: XML External Entity in Dashboard Widget'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-012/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2020-012'
+cve: CVE-2020-26229
 branches:
     10.x:
         time: '2020-11-17 08:51:21'

diff --git a/typo3/cms-core/2021-03-16-1.yaml → typo3/cms-core/CVE-2021-21338.yaml b/typo3/cms-core/2021-03-16-1.yaml → typo3/cms-core/CVE-2021-21338.yaml
@@ -1,5 +1,6 @@
 title: 'TYPO3-CORE-SA-2021-001: Open Redirection in Login Handling'
-link: 'https://typo3.org/security/advisory/typo3-core-sa-2021-001/'
+link: 'https://typo3.org/security/advisory/typo3-core-sa-2021-001'
+cve: CVE-2021-21338
 branches:
     10.x:
         time: '2021-03-16 08:59:01'