GHSA-7733-hjv6-4h47
Suggest an improvement- Source
- https://github.com/advisories/GHSA-7733-hjv6-4h47
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/10/GHSA-7733-hjv6-4h47/GHSA-7733-hjv6-4h47.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-7733-hjv6-4h47
- Aliases
- Published
- 2020-10-08T19:55:53Z
- Modified
- 2024-02-16T08:19:50.398570Z
- Severity
-
- 4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- Cross-Site Scripting in ternary conditional operator
- Details
-
Meta
- CVSS:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N/E:F/RL:O/RC:C(5.0) - CWE-79
:information_source: This vulnerability has been fixed in May 2019 already, CVE and GHSA were assigned later in October 2020
Problem
It has been discovered that the Fluid Engine (package
typo3fluid/fluid) is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like the following.{showFullName ? fullName : defaultValue}Solution
Update to versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 of this
typo3fluid/fluidpackage that fix the problem described.Updated versions of this package are bundled in following TYPO3 (
typo3/cms-core) releases: * TYPO3 v8.7.25 (usingtypo3fluid/fluidv2.5.5) * TYPO3 v9.5.6 (usingtypo3fluid/fluidv2.6.1)Credits
Thanks to Bill Dagou who reported this issue and to TYPO3 core merger Claus Due who fixed the issue.
References
- CVSS:
- Database specific
{ "nvd_published_at": "2020-10-08T21:15:00Z", "cwe_ids": [ "CWE-601", "CWE-79" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2020-10-08T19:55:04Z" }- References
-
- https://github.com/TYPO3/Fluid/security/advisories/GHSA-7733-hjv6-4h47
- https://nvd.nist.gov/vuln/detail/CVE-2020-15241
- https://github.com/TYPO3/Fluid/commit/9ef6a8ffff2e812025fc0701b4ce72eea6911a3d
- https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2020-15241.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2020-15241.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3fluid/fluid/CVE-2020-15241.yaml
- https://github.com/TYPO3/Fluid
- https://typo3.org/security/advisory/typo3-core-sa-2019-013
Affected packages
Packagist / typo3fluid/fluid
Package
- Name
- typo3fluid/fluid
- Purl
- pkg:composer/typo3fluid/fluid
Packagist / typo3fluid/fluid
Package
- Name
- typo3fluid/fluid
- Purl
- pkg:composer/typo3fluid/fluid
Packagist / typo3fluid/fluid
Package
- Name
- typo3fluid/fluid
- Purl
- pkg:composer/typo3fluid/fluid
Packagist / typo3fluid/fluid
Package
- Name
- typo3fluid/fluid
- Purl
- pkg:composer/typo3fluid/fluid
Packagist / typo3fluid/fluid
Package
- Name
- typo3fluid/fluid
- Purl
- pkg:composer/typo3fluid/fluid
Packagist / typo3fluid/fluid
Package
- Name
- typo3fluid/fluid
- Purl
- pkg:composer/typo3fluid/fluid
Packagist / typo3fluid/fluid
Package
- Name
- typo3fluid/fluid
- Purl
- pkg:composer/typo3fluid/fluid
Packagist / typo3/cms-core
Package
- Name
- typo3/cms-core
- Purl
- pkg:composer/typo3/cms-core
Packagist / typo3/cms-core
Package
- Name
- typo3/cms-core
- Purl
- pkg:composer/typo3/cms-core
Packagist / typo3/cms
Package
- Name
- typo3/cms
- Purl
- pkg:composer/typo3/cms
Affected versions
8.*
8.0.0
8.0.1
8.1.0
8.1.1
8.1.2
8.2.0
8.2.1
8.3.0
8.3.1
8.4.0
8.4.1
8.5.0
8.5.1
8.6.0
8.6.1
8.7.0
8.7.1
8.7.2
v8.*
v8.7.3
v8.7.4
v8.7.5
v8.7.6
v8.7.7
v8.7.8
v8.7.9
v8.7.10
v8.7.11
v8.7.12
v8.7.13
v8.7.14
v8.7.15
v8.7.16
v8.7.17
v8.7.18
v8.7.19
v8.7.20
v8.7.21
v8.7.22
v8.7.23
v8.7.24
Packagist / typo3/cms
Package
- Name
- typo3/cms
- Purl
- pkg:composer/typo3/cms