Insecure Deserialization in TYPO3 CMS

2024-06-0515:06:18

CWE-502

GitHub Advisory Database

github.com

typo3

form framework

insecure deserialization

php

yaml pecl package

vulnerability

7 High

AI Score

Confidence

High

JSON

It has been discovered that the Form Framework (system extension “form”) is vulnerable to Insecure Deserialization when being used with the additional PHP PECL package “yaml”, which is capable of unserializing YAML contents to PHP objects. A valid backend user account as well as having PHP setting “yaml.decode_php” enabled is needed to exploit this vulnerability (which is the default value according to PHP documentation).

Affected configurations

Vulners

Node

typo3cms_poll_system_extensionRange<9.3.2

typo3cms_poll_system_extensionRange<8.7.17

CPENameOperatorVersion
typo3/cmslt9.3.2
typo3/cmslt8.7.17

CPE	Name	Operator	Version
	typo3/cms	lt	9.3.2
	typo3/cms	lt	8.7.17

References

github.com/advisories/GHSA-8h28-f46f-m87h

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2018-07-12-4.yaml

typo3.org/security/advisory/typo3-core-sa-2018-004

7 High

AI Score

Confidence

High

JSON