TYPO3’s built-in record registration functionality (aka basic shopping cart
) using recs URL parameters is vulnerable to denial of service. Failing to properly ensure that anonymous user sessions are valid, attackers can use this vulnerability in order to create an arbitrary amount of individual session-data records in the database.
github.com/advisories/GHSA-g585-crjf-vhwq
github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2018-12-11-7.yaml
github.com/TYPO3/typo3/commit/05011d1248c54d00960e344fd920a6246da92415
github.com/TYPO3/typo3/commit/fc2b4b9fb978088267f83e73cd401d4371dd40e3
typo3.org/security/advisory/typo3-core-sa-2018-012