VuXML ID | Description |
e6839625-fdfa-11e2-9430-20cf30e32f6d | typo3 -- Multiple vulnerabilities in TYPO3 Core
Typo Security Team reports:
It has been discovered that TYPO3 Core is vulnerable to
Cross-Site Scripting and Remote Code Execution.
TYPO3 bundles flash files for video and audio playback. Old
versions of FlowPlayer and flashmedia are susceptible to
Cross-Site Scripting. No authentication is required to exploit
this vulnerability.
The file upload component and the File Abstraction Layer are
failing to check for denied file extensions, which allows
authenticated editors (even with limited permissions) to
upload php files with arbitrary code, which can then be
executed in web server's context.
Discovery 2013-07-30 Entry 2013-08-05 typo3
ge 4.5.0 lt 4.5.29
ge 4.7.0 lt 4.7.14
ge 6.1.0 lt 6.1.3
CVE-2011-3642
CVE-2013-1464
|
79818ef9-2d10-11e2-9160-00262d5ed8ee | typo3 -- Multiple vulnerabilities in TYPO3 Core
Typo Security Team reports:
TYPO3 Backend History Module - Due to missing encoding of user
input, the history module is susceptible to SQL Injection and
Cross-Site Scripting. A valid backend login is required to exploit
this vulnerability. Credits go to Thomas Worm who discovered and
reported the issue.
TYPO3 Backend API - Failing to properly HTML-encode user input the
tree render API (TCA-Tree) is susceptible to Cross-Site Scripting.
TYPO3 Versions below 6.0 does not make us of this API, thus is not
exploitable, if no third party extension is installed which uses
this API. A valid backend login is required to exploit this
vulnerability. Credits go to Richard Brain who discovered and
reported the issue.
Discovery 2012-11-08 Entry 2012-11-12 typo3
ge 4.5.0 lt 4.5.21
ge 4.6.0 lt 4.6.14
ge 4.7.0 lt 4.7.6
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-005/
|
b9a347ac-8671-11e2-b73c-0019d18c446a | typo3 -- Multiple vulnerabilities in TYPO3 Core
Typo Security Team reports:
Extbase Framework - Failing to sanitize user input, the Extbase
database abstraction layer is susceptible to SQL Injection. TYPO3
sites which have no Extbase extensions installed are not affected.
Extbase extensions are affected if they use the Query Object Model
and relation values are user generated input. Credits go to Helmut
Hummel and Markus Opahle who discovered and reported the issue.
Access tracking mechanism - Failing to validate user provided
input, the access tracking mechanism allows redirects to arbitrary
URLs. To fix this vulnerability, we had to break existing
behaviour of TYPO3 sites that use the access tracking mechanism
(jumpurl feature) to transform links to external sites. The link
generation has been changed to include a hash that is checked
before redirecting to an external URL. This means that old links
that have been distributed (e.g. by a newsletter) will not work
any more.
Discovery 2013-03-06 Entry 2013-03-06 typo3
ge 4.5.0 lt 4.5.23
ge 4.6.0 lt 4.6.16
ge 4.7.0 lt 4.7.8
ge 6.0.0 lt 6.0.2
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-001/
|
a0d77bc8-c6a7-11e5-96d6-14dae9d210b8 | typo3 -- multiple vulnerabilities
TYPO3 Security Team reports:
It has been discovered that TYPO3 CMS is susceptible to
Cross-Site Scripting and Cross-Site Flashing.
Discovery 2015-12-15 Entry 2016-01-29 typo3
< 7.6.1
typo3-lts
< 6.2.16
http://lists.typo3.org/pipermail/typo3-announce/2015/000351.html
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-010/
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012/
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-013/
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/
|
3caf4e6c-4cef-11e6-a15f-00248c0c745d | typo3 -- Missing access check in Extbase
TYPO3 reports:
Extbase request handling fails to implement a proper access check for
requested controller/ action combinations, which makes it possible for an
attacker to execute arbitrary Extbase actions by crafting a special request. To
successfully exploit this vulnerability, an attacker must have access to at
least one Extbase plugin or module action in a TYPO3 installation. The missing
access check inevitably leads to information disclosure or remote code
execution, depending on the action that an attacker is able to execute.
Discovery 2016-05-24 Entry 2016-07-18 typo3
< 7.6.8
typo3-lts
< 6.2.24
CVE-2016-5091
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-013/
https://wiki.typo3.org/TYPO3_CMS_7.6.8
https://wiki.typo3.org/TYPO3_CMS_6.2.24
|