Search for packages
| purl | pkg:composer/typo3/cms@7.6.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1d1x-7vx6-zbfw
Aliases: CVE-2017-14251 GHSA-fh4q-hxrw-cjqq |
TYPO3 Arbitrary Code Execution Unrestricted File Upload vulnerability in the fileDenyPattern in sysext/core/Classes/Core/SystemEnvironmentBuilder.php in TYPO3 7.6.0 to 7.6.21 and 8.0.0 to 8.7.4 allows remote authenticated users to upload files with a .pht extension and consequently execute arbitrary PHP code. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-1u6q-5rdj-abdb
Aliases: GHSA-qffc-gwpp-m2xr |
XML External Entity (XXE) Processing in TYPO3 Core All XML processing within the TYPO3 CMS are vulnerable to XEE processing. This can lead to load internal and/or external (file) content within an XML structure. Furthermore it is possible to inject arbitrary files for an XML Denial of Service attack. For more information on that topic see https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing. |
Affected by 0 other vulnerabilities. |
|
VCID-2m7w-zfua-u7b9
Aliases: GHSA-g4pf-3jvq-2gcw |
TYPO3 Remote Code Execution in third party library swiftmailer TYPO3 uses the package swiftmailer/swiftmailer for mail actions. This package is known to be vulnerable to Remote Code Execution. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
|
VCID-3yjx-zkmc-zkau
Aliases: 2016-04-12-4 |
Improper Privilege Management Privilege Escalation in TYPO3 CMS. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-58sc-bkhd-7ud1
Aliases: 2017-09-05-4 |
Code Injection Arbitrary Code Execution in TYPO3 CMS. |
Affected by 0 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-5m4k-jd3r-abaf
Aliases: GHSA-gj48-w74w-8gvm GMS-2024-342 |
Path Traversal in TYPO3 Core Due to a too loose type check in an API method, attackers could bypass the directory traversal check by providing an invalid UTF-8 encoding sequence. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-6bne-vnc6-wfe9
Aliases: 2016-07-19-5 |
Cross-site Scripting Cross-Site Scripting vulnerability in typolinks. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-7yrw-wj9m-hkd4
Aliases: 2017-02-28-2 |
Cross-site Scripting XSS in TYPO3 CMS. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-8a25-9af4-tyhk
Aliases: GHSA-xvcp-33rc-j8gq |
Insecure Unserialize in TYPO3 Import/Export Failing to properly validate incoming import data, the Import/Export component is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-8fkz-6kqu-gqbk
Aliases: TYPO3-CORE-SA-2016-024 |
Path Traversal Due to a too loose type check in an API method, attackers could bypass the directory traversal check by providing an invalid UTF-8 encoding sequence. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-8jv7-9a74-q3ee
Aliases: 2016-04-12-1 |
Cross-site Scripting Cross-Site Scripting in TYPO3 Backend. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-8wyj-vv9y-jbhp
Aliases: GHSA-8j9v-4hhh-x43c |
Cross-Site Scripting (XSS) in TYPO3 component CSS styled content Failing to properly encode user input, the CSS styled content component is susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML or JavaScript. |
Affected by 0 other vulnerabilities. |
|
VCID-a6c5-ytdy-3qh4
Aliases: GHSA-5gr6-97fv-52cc |
Cross-Site Scripting in TYPO3 CMS Failing to properly encode user input, several places of the TYPO3 CMS are vulnerable to Cross-Site Scripting. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-a8wf-nz2q-s3gh
Aliases: GHSA-gwfx-p7mr-f92v |
Missing Access Check in TYPO3 CMS Extbase request handling fails to implement a proper access check for requested controller/ action combinations, which makes it possible for an attacker to execute arbitrary Extbase actions by crafting a special request. To successfully exploit this vulnerability, an attacker must have access to at least one Extbase plugin or module action in a TYPO3 installation. The missing access check inevitably leads to information disclosure or remote code execution, depending on the action that an attacker is able to execute. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-aujs-m8j8-guh1
Aliases: 2016-05-24-1 |
Improper Access Control Missing Access Check in TYPO3 CMS. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-axg7-qg5u-kbg7
Aliases: GHSA-86r8-4g3w-7xjp |
Cross-Site Scripting in TYPO3 Backend Failing to properly encode user input, some backend components are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-bd6u-nca5-gyeu
Aliases: GHSA-hq37-rfjc-mr8h |
Cross-Site Scripting (XSS) in TYPO3 Backend Failing to properly encode user input, the page module is vulnerable to Cross-Site Scripting. A valid backend user account with permissions to edit plugins is needed to exploit this vulnerability. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-bfg8-yh9h-5kce
Aliases: 2016-02-23-4 |
Uncontrolled Resource Consumption Denial of Service attack possibility in TYPO3 component Indexed Search. |
Affected by 0 other vulnerabilities. |
|
VCID-brcm-16va-3yek
Aliases: GHSA-c7p6-3c9c-f88q |
Information Disclosure in TYPO3 CMS HTTP requests being performed using the TYPO3 API expose the specific TYPO3 version to the called endpoint. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-cdkv-3rbf-27ed
Aliases: 2016-07-19-4 |
Information Disclosure in TYPO3 Backend. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-cnqq-fdxb-9uat
Aliases: GHSA-c7rj-92xr-wprg |
Insecure Unserialize in TYPO3 Backend Failing to properly validate incoming data, the suggest wizard is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-d2qd-qjn9-jffs
Aliases: 2016-07-19-1 |
Cross-site Scripting Cross-Site Scripting in TYPO3 Backend. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-d381-rcq3-n3az
Aliases: GHSA-vpr3-rc99-2wpr |
Information Disclosure in TYPO3 Backend The TYPO3 backend module stores the username of an authenticated backend user in its cache files. By guessing the file path to the cache files it is possible to receive valid backend usernames. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-dc9k-gxr2-6bah
Aliases: 2016-07-19-7 |
Cross-site Scripting Cross-Site Scripting in third party library `mso/idna-convert`. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-dm6k-fzm6-sqbe
Aliases: GHSA-p5c5-gmj4-g48f |
Cross-Site Scripting (XSS) vulnerability in typolinks All link fields within the TYPO3 installation are vulnerable to Cross-Site Scripting as authorized editors can insert data commands by using the url scheme "data:". |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-e5ns-2x1v-sbaj
Aliases: TYPO3-CORE-SA-2016-023 |
Insecure Unserialize in TYPO3 Backend Failing to properly validate incoming data, the suggest wizard is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-fru4-hjhx-47ev
Aliases: TYPO3-CORE-SA-2017-006 |
Information Disclosure HTTP requests being performed using the TYPO3 API expose the specific TYPO3 version to the called endpoint. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-gb7f-4sm6-tkaw
Aliases: 2016-09-14-2 |
Uncontrolled Resource Consumption Cache Flooding in TYPO3 Frontend. |
Affected by 0 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-hbzu-v4jk-hyhd
Aliases: 2016-02-23-1 |
Improper Restriction of XML External Entity Reference XML External Entity (XXE) Processing in TYPO3 Core. |
Affected by 0 other vulnerabilities. |
|
VCID-heyp-4b45-v7gp
Aliases: 2016-11-22-1 |
Insecure Deserialization Insecure Unserialize in TYPO3 Backend. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-htsn-wq8h-qbgp
Aliases: 2017-01-03-1 |
Code Injection Remote Code Execution in third party library swiftmailer. |
Affected by 1 other vulnerability. Affected by 5 other vulnerabilities. |
|
VCID-hwcz-r4cu-9fba
Aliases: TYPO3-CORE-SA-2017-003 |
XSS Vulnerability TYPO3 is vulnerable to Cross-Site Scripting. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-j1nq-26xv-yff3
Aliases: GHSA-j86x-pjmr-9m6w |
SQL Injection in TYPO3 Frontend Login Failing to properly escape user input, the frontend login component is vulnerable to SQL Injection. A valid frontend user account is needed to exploit this vulnerability. |
Affected by 0 other vulnerabilities. |
|
VCID-k8yx-gezq-7fd6
Aliases: GHSA-6xh8-8pfv-53vx |
Authentication Bypass in TYPO3 CMS The default authentication service misses to invalidate empty strings as password. Therefore it is possible to authenticate backend and frontend users without password set in the database. Note: TYPO3 does not allow to create user accounts without a password. Your TYPO3 installation might only be affected if there is a third party component creating user accounts without password by directly manipulating the database. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-krcw-y6kx-37br
Aliases: 2016-02-23-3 |
Cross-site Scripting Cross-Site Scripting in TYPO3 component CSS styled content. |
Affected by 0 other vulnerabilities. |
|
VCID-m3gb-henf-4uga
Aliases: 2016-07-19-3 |
SQL Injection in TYPO3 Frontend Login. |
Affected by 0 other vulnerabilities. |
|
VCID-mc77-ed2h-13dy
Aliases: GHSA-cg4m-qjjp-7497 |
TYPO3 Cross-Site Scripting in link validator component Failing to sanitize content from editors, the link validator component is susceptible to Cross-Site Scripting. A valid editor account with access to content which is scanned by the link validator component is required to exploit this vulnerability. |
Affected by 0 other vulnerabilities. |
|
VCID-psu6-y6fc-nqh4
Aliases: 2016-07-19-2 |
Deserialization of Untrusted Data Insecure Unserialize in TYPO3 Import/Export. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-rtd6-q7tg-ykfh
Aliases: CVE-2020-26227 GHSA-vqqx-jw6p-q3rf |
Cross-Site Scripting in Fluid view helpers > ### Meta > * CVSS: `CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:F/RL:O/RC:C` (5.7) > * CWE-79 ### Problem It has been discovered that system extension Fluid (`typo3/cms-fluid`) of the TYPO3 core is vulnerable to cross-site scripting passing user-controlled data as argument to Fluid view helpers. ``` <f:form ... fieldNamePrefix="{payload}" /> <f:be.labels.csh ... label="{payload}" /> <f:be.menus.actionMenu ... label="{payload}" /> ``` ### Solution Update to TYPO3 versions 9.5.23 or 10.4.10 that fix the problem described. ### Credits Thanks to TYPO3 security team member Oliver Hader who reported this issue and to TYPO3 security team members Helmut Hummel & Oliver Hader who fixed the issue. ### References * [TYPO3-CORE-SA-2020-010](https://typo3.org/security/advisory/typo3-core-sa-2020-010) |
Affected by 113 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-scue-m12x-nkf4
Aliases: 2017-09-05-3 |
Information Disclosure in TYPO3 CMS. |
Affected by 0 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-t352-87cy-4qhm
Aliases: GHSA-pw2q-qwvj-gh43 |
Cache Flooding in TYPO3 Frontend Links with a valid cHash argument lead to newly generated page cache entries. Because the cHash is not bound to a specific page, attackers could use valid cHash arguments for multiple pages, leading to additional useless page cache entries. Depending on the number of pages in the system and the number of available valid links with a cHash, attackers could add a considerable amount of additional cache entries, which in the end exceed storage limits and thus could lead to the system not responding any more. This means the Cache Flooding attack potentially could lead to a successful Denial of Service (DoS) attack. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-t7fe-ph2m-j3e5
Aliases: 2016-09-14-1 |
Cross-site Scripting XSS in TYPO3 Backend. |
Affected by 0 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-tdsj-15xc-x3ar
Aliases: GHSA-qmwf-j7g7-f5jw |
Cross-Site Scripting in third party library mso/idna-convert Make sure to not expose the vendor directory to the publicly accessible document root. In composer managed installation, make sure to configure a dedicated web folder. In general it is recommended to not expose the complete typo3_src sources folder in the document root. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-u6ar-3wzb-u3eg
Aliases: GHSA-g46h-v2cc-6c94 |
Information Disclosure in TYPO3 CMS Failing to properly check user permission on file storages, editors could gain knowledge of protected storages and its folders as well as using them in a file collection being rendered in the frontend. A valid backend user account is needed to exploit this vulnerability. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-ue38-abs9-ffa8
Aliases: 2016-02-16-2 |
Cross-site Scripting Cross-Site Scripting in link validator component. |
Affected by 0 other vulnerabilities. |
|
VCID-vftm-uyy7-63fb
Aliases: 2017-09-05-2 |
Information Disclosure in TYPO3 CMS. |
Affected by 0 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
VCID-vujd-b56y-8kfk
Aliases: GHSA-v5jp-4h2p-j2p4 |
Privilege Escalation in TYPO3 CMS The workspace/ version preview link created by a privileged (backend) user could be abused to obtain certain editing permission, if the admin panel is configured to be shown. A valid preview link is required to exploit this vulnerability. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-vyhd-x5fe-b3aj
Aliases: TYPO3-CORE-SA-2017-005 |
Information Disclosure Failing to properly check user permission on file storages, editors could gain knowledge of protected storages and its folders as well as using them in a file collection being rendered in the frontend. A valid backend user account is needed to exploit this vulnerability. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-x5wu-b995-xkcm
Aliases: 2016-04-12-3 |
Improper Authentication Authentication Bypass in TYPO3 CMS. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-xg9s-8fv2-87hq
Aliases: GHSA-67wg-6j7r-mqh8 |
Arbitrary Code Execution in TYPO3 CMS Due to a missing file extension in the fileDenyPattern, backend user are allowed to upload *.pht files which can be executed in certain web server setups. The new default fileDenyPattern is the following, which might have been overridden in the TYPO3 Install Tool. ``` \.(php[3-7]?|phpsh|phtml|pht)(\..*)?$|^\.htaccess$ ``` |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-xh3z-5w6z-ducr
Aliases: GHSA-pmxp-7224-h794 |
Denial of Service (DoS) attack possibility in TYPO3 component Indexed Search Due to an oversized maximum result limit, TYPO3 component Indexed Search is susceptible to a Denial of Service attack. |
Affected by 0 other vulnerabilities. |
|
VCID-y15u-f9e9-akff
Aliases: 2016-11-22-2 |
Path Traversal in TYPO3 Core. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-yz56-gs5x-hudr
Aliases: TYPO3-CORE-SA-2017-007 |
Arbitrary Code Execution Due to a missing file extension in the `fileDenyPattern`, backend user are allowed to upload *.pht files which can be executed in certain web server setups. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-zu53-dnd1-h3gu
Aliases: GHSA-5wx6-xwxf-q8qj |
Cross-Site Scripting in TYPO3 Backend Failing to properly encode user input, some backend components are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||