Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The frp_form_answers (aka Forms Export) extension before 3.1.2, and 4.x before 4.0.2, for TYPO3 allows XSS via saved emails.
Advisories for Composer/Frappant/Frp-Form-Answers package
2023