Insecure Deserialization in TYPO3 CMS

2024-06-0515:06:18

Google

osv.dev

insecure deserialization

yaml

php

backend user

vulnerability

7 High

AI Score

Confidence

High

JSON

It has been discovered that the Form Framework (system extension “form”) is vulnerable to Insecure Deserialization when being used with the additional PHP PECL package “yaml”, which is capable of unserializing YAML contents to PHP objects. A valid backend user account as well as having PHP setting “yaml.decode_php” enabled is needed to exploit this vulnerability (which is the default value according to PHP documentation).

CPENameOperatorVersion
typo3/cmseq8.7.9
typo3/cmseq8.7.8
typo3/cmseq8.7.14
typo3/cmseq8.5.1
typo3/cmseq8.6.1
typo3/cmseq8.7.12
typo3/cmseq8.7.6
typo3/cmseq9.1.0
typo3/cmseq8.5.0
typo3/cmseq8.7.10

Name	Operator	Version
typo3/cms	eq	8.7.9
typo3/cms	eq	8.7.8
typo3/cms	eq	8.7.14
typo3/cms	eq	8.5.1
typo3/cms	eq	8.6.1
typo3/cms	eq	8.7.12
typo3/cms	eq	8.7.6
typo3/cms	eq	9.1.0
typo3/cms	eq	8.5.0
typo3/cms	eq	8.7.10

Rows per page:

1-10 of 271

References

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2018-07-12-4.yaml

github.com/TYPO3/typo3

typo3.org/security/advisory/typo3-core-sa-2018-004

7 High

AI Score

Confidence

High

JSON