Arbitrary Code Execution

2022-12-1506:24:38

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

arbitrary code

execution

vulnerable

typoscript

php

configuration

form designer

backend module

0.001 Low

EPSS

Percentile

34.9%

JSON

typo3/cms and typo3/cms-core are vulnerable to arbitrary code execution. An attacker is able to inject and execute malicious TypoScript as PHP code due to the lack of separating user-submitted data from the internal configuration in the Form Designer backend module.

CPENameOperatorVersion
typo3/cmslev11.5.19
typo3/cmslev10.4.32
typo3/cmslev12.1.0
typo3/cms-corelev11.5.19
typo3/cms-corelev10.4.32
typo3/cms-corelev12.1.0
typo3/cmslev11.5.19
typo3/cmslev10.4.32
typo3/cmslev12.1.0
typo3/cms-corelev11.5.19

Name	Operator	Version
typo3/cms	le	v11.5.19
typo3/cms	le	v10.4.32
typo3/cms	le	v12.1.0
typo3/cms-core	le	v11.5.19
typo3/cms-core	le	v10.4.32
typo3/cms-core	le	v12.1.0
typo3/cms	le	v11.5.19
typo3/cms	le	v10.4.32
typo3/cms	le	v12.1.0
typo3/cms-core	le	v11.5.19