Lucene search

GitHub Advisory DatabaseGHSA-947M-VGQC-X6V4

HistoryMay 17, 2022 - 1:37 a.m.

Typo3 Backend History Module Vulnerable to SQL Injection

2022-05-1701:37:41

CWE-89

GitHub Advisory Database

github.com

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.4%

JSON

SQL injection vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 Due to missing encoding of user input, the history module is susceptible to SQL Injection and Cross-Site Scripting. A valid backend login is required to exploit this vulnerability.

Affected configurations

Vulners

Node

typo3cms_poll_system_extensionRange≤4.7.5

typo3cms_poll_system_extensionRange≤4.6.13

typo3cms_poll_system_extensionRange≤4.5.20

CPENameOperatorVersion
typo3/cmsle4.7.5
typo3/cmsle4.6.13
typo3/cmsle4.5.20

Name	Operator	Version
typo3/cms	le	4.7.5
typo3/cms	le	4.6.13
typo3/cms	le	4.5.20

References

typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-005/

www.openwall.com/lists/oss-security/2013/06/19/4

exchange.xforce.ibmcloud.com/vulnerabilities/79964

github.com/advisories/GHSA-947m-vgqc-x6v4

nvd.nist.gov/vuln/detail/CVE-2012-6144

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.4%

JSON

Related for GHSA-947M-VGQC-X6V4