TYPO3 Denial of Service in Frontend Record Registration

2024-06-0718:30:35

Google

osv.dev

typo3

frontend

record registration

denial of service

vulnerability

session data

database

7.1 High

AI Score

Confidence

High

JSON

TYPO3’s built-in record registration functionality (aka basic shopping cart) using recs URL parameters is vulnerable to denial of service. Failing to properly ensure that anonymous user sessions are valid, attackers can use this vulnerability in order to create an arbitrary amount of individual session-data records in the database.

CPENameOperatorVersion
typo3/cmseq7.6.2
typo3/cmseq8.1.0
typo3/cmseq8.4.0
typo3/cmseq8.7.2
typo3/cmseq7.6.17
typo3/cmseq7.2.0
typo3/cmseq8.1.2
typo3/cmseq8.0.1
typo3/cmseq7.6.21
typo3/cmseq8.2.0

Name	Operator	Version
typo3/cms	eq	7.6.2
typo3/cms	eq	8.1.0
typo3/cms	eq	8.4.0
typo3/cms	eq	8.7.2
typo3/cms	eq	7.6.17
typo3/cms	eq	7.2.0
typo3/cms	eq	8.1.2
typo3/cms	eq	8.0.1
typo3/cms	eq	7.6.21
typo3/cms	eq	8.2.0

Rows per page:

1-10 of 771

References

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2018-12-11-7.yaml

github.com/TYPO3/typo3

github.com/TYPO3/typo3/commit/05011d1248c54d00960e344fd920a6246da92415

github.com/TYPO3/typo3/commit/fc2b4b9fb978088267f83e73cd401d4371dd40e3

typo3.org/security/advisory/typo3-core-sa-2018-012

7.1 High

AI Score

Confidence

High

JSON