It has been discovered that TYPO3 Neos is vulnerable to Privilege Escalation. Logged in editors could access, create and modify content nodes that exist in the workspace of other editors.
CPE | Name | Operator | Version |
---|---|---|---|
typo3/neos | eq | 1.1.1 | |
typo3/neos | eq | 1.1.2 | |
typo3/neos | eq | 1.2.2 | |
typo3/neos | eq | 1.1.0 | |
typo3/neos | eq | 1.2.0 | |
typo3/neos | eq | 1.2.1 |