Headline
GHSA-xjwx-78x7-q6jc: TYPO3 vulnerable to an HTML Injection in the History Module
Problem
The history backend module is vulnerable to HTML injection. Although Content-Security-Policy headers effectively prevent JavaScript execution, adversaries can still inject malicious HTML markup. Exploiting this vulnerability requires a valid backend user account.
Solution
Update to TYPO3 version 13.1.1 that fixes the problem described.
Credits
Thanks to TYPO3 core team member Andreas Kienast who reported this issue and to TYPO3 core & security team Benjamin Franzke who fixed the issue.
References
Package
composer typo3/cms-core (Composer)
Affected versions
>= 13.0.0, <= 13.1.0
Patched versions
13.1.1
Description
Problem
The history backend module is vulnerable to HTML injection. Although Content-Security-Policy headers effectively prevent JavaScript execution, adversaries can still inject malicious HTML markup. Exploiting this vulnerability requires a valid backend user account.
Solution
Update to TYPO3 version 13.1.1 that fixes the problem described.
Credits
Thanks to TYPO3 core team member Andreas Kienast who reported this issue and to TYPO3 core & security team Benjamin Franzke who fixed the issue.
References
- TYPO3-CORE-SA-2024-007
References
- GHSA-xjwx-78x7-q6jc
- https://nvd.nist.gov/vuln/detail/CVE-2024-34355
- TYPO3/typo3@56afa30
- https://typo3.org/security/advisory/typo3-core-sa-2024-007
ohader published to TYPO3/typo3
May 14, 2024
Published by the National Vulnerability Database
May 14, 2024
Published to the GitHub Advisory Database
May 14, 2024
Reviewed
May 14, 2024
Last updated
May 14, 2024