34 matches found
Improper Privilege Management
typo3/cms is vulnerable to unauthorized access vulnerability. The vulnerability is due to insufficient access control, allowing editors with access to the file metadata table to change, create, or delete metadata of files outside their authorized file mounts...
Session Fixation
typo3/cms is vulnerable to Session Fixation. The vulnerability is due to the session ID not being changed upon authentication, which allows attackers to generate a valid session ID and trick users into using it, potentially gaining access to authenticated sessions...
Cross Site Scripting
typo3/cms is vulnerable to Cross Site Scripting. The vulnerability is caused due to a missing sanitization while rendering web page on the browser. This can lead to an authorized editors insert javascript commands by using the url scheme javascript:...
Brute Force Protection Bypass
typo3/cms is vulnerable to Brute Force Protection Bypass. The vulnerability is caused due to a flaw which can result in bypassing a brute force protection implementation which pauses for 5 seconds if wrong credentials are given. This can lead to unathorized access to the system...
Cross Site Scripting (XSS)
typo3/cms is vulnerable to Cross Site Scripting XSS. The vulnerability is caused due to a failure in validating the HTTP host-header. This can lead to host header spoofing...
Cache Poisoning
typo3/cms is vulnerable to Cache Poisoning. The vulnerability is caused due to using the configuration option config.prefixLocalAnchors with values "all" or "cached". This can lead to unfamiliar looking links to the home page can end up in the cache, which leads to a reload of the page in the...
Cross-Site Scripting (XSS)
typo3/cms is vulnerable to Cross-Site Scripting XSS.The vulnerability is caused due to improper encoding of editor input, allowing authenticated editors to inject arbitrary HTML...
Cross-Site Scripting (XSS)
typo3/cms is vulnerable to Cross-Site Scripting XSS. The vulnerability is caused due to a lack of sanitization of content from editors. This allows attackers with valid editor accounts to inject malicious scripts into content scanned by the link validator component...
Cross-Site Scripting (XSS)
typo3/cms is vulnerable to Cross-Site Scripting XSS. The vulnerability is caused due to the lack of input sanitization for content submitted by unauthenticated website visitors, which allows malicious scripts to be executed in the context of the user's browser...
Improper Access Control
typo3/cms is vulnerable to Improper Access Control. The vulnerability is due to improper validation for requested controller/action combinations, allowing attackers to execute arbitrary Extbase actions by crafting a special request...
Insecure Deserialization
typo3/cms is vulnerable to Insecure Deserialization. The vulnerability is due to improper validation of incoming import data in the Import/Export component, which requires a valid backend user account to exploit...
Denial Of Service (DoS)
typo3/cms is vulnerable to Denial of Service DoS. The vulnerability is due to handling large .youtube and .vimeo files in the backend, leading to high consumption of system resources and exceeding PHP process limits, resulting in a dysfunctional backend component...
Arbitrary Code Execution
typo3/cms is vulnerable to arbitrary file upload. The vulnerability is due to a missing file extensions in $GLOBALS'TYPO3CONFVARS''BE''fileDenyPattern', allowing backend users to upload executable files such as .phar, .shtml, .pl, or .cgi in certain web server setups...
Sensitive Information Disclosure
typo3/cms is vulnerable to Sensitive Information Disclosure. The vulnerability is due to mechanisms used for configuration of RequireJS package loading, which can potentially allow an attacker to retrieve additional information about the installed system and third-party extensions...
Cross-site Scripting (XSS)
typo3/cms is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper sanitization of field validation error outputs, which allows malicious scripts to be executed in the user's browser...
Denial Of Service (DoS)
typo3/cms is vulnerable to Denial Of Service. The vulnerability is due to the unbound cHash argument, which attackers can exploit it by using valid cHash arguments for multiple pages, leading to additional useless page cache entries. This allows an attackers to generate a considerable amount of...
Authentication Bypass
typo3/cms is vulnerable to Authentication Bypass. The vulnerability is due to late TCA initialization, which fails to restrict frontend users according to the validation rules, allowing attackers to authenticate restricted e.g., disabled frontend users...
Cross-site Scripting (XSS)
typo3/cms is vulnerable to cross-site scripting XSS. The vulnerability is due to improper handling of file extensions containing malicious sequences in the output table listing, which requires access to the server's file system either directly or through synchronization to exploit...
Cross-Site Scripting
typo3/cms is vulnerable to Cross-Site Scripting. The vulnerability is due to improper sanitization of user input in the CSS styled content component, which allows an authenticated users to inject arbitrary HTML or JavaScript...
Cross-Site Scripting
typo3/cms is vulnerable to Cross-Site Scripting. The vulnerability is due to improper sanitization within the bookmark toolbar, which allows attackers to execute arbitrary scripts in the context of the user's browser session...