TYPO3 Multiple Vulnerabilities Fixed by 6.2.18 and 7.6.3


Description   (#Several vulnerabilities were reported in subcomponents of TYPO3's core:#- form: cross-site scripting (only affects versions 6.x)#- legacy: cross-site scripting. Successfully exploitation requires an editor account (only affects versions 6.x)#- link validator: cross-site scripting. Successfully exploitation requires an editor account#- dbal: SQL injection in "DatabaseConnection::sql_query". Successfully exploitation requires MYSQL passthrough enabled (only affects versions 6.x).)
     
Vulnerable Products   Vulnerable Software:
Typo3 (Typo3) - 6.2.0, 6.2.1, 6.2.10, 6.2.11, 6.2.12, ..., 6.2.8, 6.2.9, 7.6.0, 7.6.1, 7.6.2
     
Solution   Versions 6.2.18 and 7.6.3 of TYPO3 fix these vulnerabilities.
     
CVE  
     
References   - TYPO3-CORE-SA-2016-004: Cross-Site Scripting in form component
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-004/
- TYPO3-CORE-SA-2016-003: Cross-Site Scripting in legacy form component
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-003/
- TYPO3-CORE-SA-2016-002: Cross-Site Scripting in link validator component
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-002/
- TYPO3-CORE-SA-2016-001: SQL Injection in dbal
https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-001/
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
XSS - Prevention - POST : suspicious 'meta' tag found in data
3.2.0
XSS - Prevention - POST : suspicious 'img' attribute found in data
3.2.0
XSS - Prevention - POST : suspicious 'style' tag found in data
5.0.0
XSS - Prevention - POST : javascript code found in data
5.0.0
XSS - Prevention - POST : suspicious tag with event found in data
5.0.0
XSS - Prevention - POST : suspicious 'embed' tag found in data
5.0.0
XSS - Prevention - POST : 'location' javascript object found in data
5.0.0
XSS - Prevention - POST : code allowing cookie access found in data
5.0.0
XSS - Prevention - POST : 'script' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'style' attribute found in data
5.0.0
XSS - Prevention - POST : suspicious 'applet' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'div' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'img' attribute found in data
5.0.0
XSS - Prevention - POST : suspicious 'meta' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'object' tag found in data
5.0.0
XSS - Prevention - POST : suspicious 'iframe' tag found in data
5.0.0
     


 
 
 
 
 Risk level 
Moderate 

 Vulnerability First Public Report Date 
2016-02-16 

 Target Type 
Server 

 Possible exploit 
Remote