GHSA-p2jh-95jg-2w55: Information Disclosure in typo3/cms-install tool

Skip to content

• • Actions

    Automate any workflow

  • Packages

    Host and manage packages

  • Security

    Find and fix vulnerabilities

  • Codespaces

    Instant dev environments

  • Copilot

    Write better code with AI

  • Code review

    Manage code changes

  • Issues

    Plan and track work

  • Discussions

    Collaborate outside of code

• • GitHub Sponsors

    Fund open source developers

*   The ReadME Project
    
    GitHub community articles

• Pricing

1. GitHub Advisory Database
2. GitHub Reviewed
3. CVE-2023-47126

Information Disclosure in typo3/cms-install tool

Low severity GitHub Reviewed Published Nov 14, 2023 in TYPO3/typo3 • Updated Nov 14, 2023

Package

composer typo3/cms-install (Composer)

Affected versions

>= 12.2.0, < 12.4.8

Description

CVSS: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:F/RL:O/RC:C (3.5)

Problem

The login screen of the standalone install tool discloses the full path of the transient data directory (e.g. /var/www/html/var/transient/). This applies to composer-based scenarios only - “classic” non-composer installations are not affected.

Solution

Update to TYPO3 version 12.4.8 that fixes the problem described above.

Credits

Thanks to Markus Klein who reported and fixed the issue.

References

• TYPO3-CORE-SA-2023-005

References

• GHSA-p2jh-95jg-2w55
• TYPO3/typo3@1a735da
• https://typo3.org/security/advisory/typo3-core-sa-2023-005

Published to the GitHub Advisory Database

Nov 14, 2023

Last updated

Nov 14, 2023