Lucene search
GoogleOSV:GHSA-WR3C-6C22-M9V6HistoryJun 05, 2024 - 5:28 p.m.
Privilege Escalation in TYPO3 Neos
2024-06-0517:28:04
Google
osv.dev
2
typo3 neos
privilege escalation
content nodes
logged in editors
7 High
AI Score
Confidence
High
It has been discovered that TYPO3 Neos is vulnerable to Privilege Escalation. Logged in editors could access, create and modify content nodes that exist in the workspace of other editors.
| CPE | Name | Operator | Version |
|---|---|---|---|
| typo3/neos | eq | 1.1.1 | |
| typo3/neos | eq | 1.1.2 | |
| typo3/neos | eq | 1.2.2 | |
| typo3/neos | eq | 1.1.0 | |
| typo3/neos | eq | 1.2.0 | |
| typo3/neos | eq | 1.2.1 |
7 High
AI Score
Confidence
High