TYPO3 Brute Force Protection Bypass in backend login

2024-05-3021:12:16

CWE-20

GitHub Advisory Database

github.com

typo3

brute force

backend login

protection bypass

special request

7.1 High

AI Score

Confidence

High

JSON

The backend login has a basic brute force protection implementation which pauses for 5 seconds if wrong credentials are given. This pause however could be bypassed by forging a special request, making brute force attacks on backend editor credentials more feasible.

Affected configurations

Vulners

Node

typo3cms_poll_system_extensionRange<7.3.1

typo3cms_poll_system_extensionRange<6.2.14

CPENameOperatorVersion
typo3/cmslt7.3.1
typo3/cmslt6.2.14

CPE	Name	Operator	Version
	typo3/cms	lt	7.3.1
	typo3/cms	lt	6.2.14

References

github.com/advisories/GHSA-jqr8-q455-xx45

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-5.yaml

github.com/TYPO3/typo3/commit/0b67290bbd941c07b0101bbfd6c7aadcbb93c75c

github.com/TYPO3/typo3/commit/0f3fb37674688aba5a44ca6f5df7f8a327a5b5f6

typo3.org/security/advisory/typo3-core-sa-2015-006

typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-006

7.1 High

AI Score

Confidence

High

JSON