Georg Ringer

**Nome do Software Vulnerável e Versões Afetadas** News system (news) (versões afetadas não especificadas) **Descrição** A extensão não sanitiza adequadamente a entrada do usuário antes de utilizá-la em uma consulta ao banco de dados. Isso permite que um invasor não autenticado realize uma injeção de SQL (SQL injection), que é a inserção de código SQL malicioso em uma consulta, por meio de um parâmetro de URL em páginas que utilizam o plugin "Date Menu of news articles". Este problema é explorável quando o plugin "Date Menu of news articles" está ativo e a configuração TypoScript/Plugin `disableOverrideDemand` não está habilitada. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha a correção para esta vulnerabilidade. Habilite a configuração TypoScript/Plugin `disableOverrideDemand` para mitigar o risco de exploração.

**Nome do Software Vulnerável e Versões Afetadas** Address List (tt address) (versões afetadas não especificadas) **Descrição** A função `AddressRepository::getSqlQuery()` constrói uma consulta de banco de dados sem sanitizar adequadamente a entrada do usuário, o que pode levar a uma Injeção de SQL (uma técnica onde instruções SQL maliciosas são inseridas em campos de entrada para execução). Embora este método não seja chamado dentro da extensão por padrão, extensões personalizadas que o invoquem utilizando entradas não confiáveis podem expor o site a esse risco. **Recomendações** Como medida paliativa temporária, evite chamar a função `getSqlQuery()` com entradas não confiáveis em extensões personalizadas. No momento, não há informações sobre uma versão mais recente que contenha a correção para esta vulnerabilidade.

**Nome do software vulnerável e versões afetadas** Versões da extensão google for jobs anteriores à 1.5.1 Versões 2.x da extensão google for jobs anteriores à 2.1.1 **Descrição** Foi detectada uma falha na extensão google for jobs que impede a codificação adequada das entradas do usuário para exibição em contexto HTML, levando a uma possível exploração. É necessária uma conta de usuário do backend do TYPO3 para explorar essa vulnerabilidade. **Recomendações** Para versões anteriores à 1.5.1, atualize para a versão 1.5.1 ou posterior. Para versões 2.x anteriores à 2.1.1, atualize para a versão 2.1.1 ou posterior.

**Nome do software vulnerável e versões afetadas** Extensão TYPO3 “Dynamic Content Elements (dce)”, versões anteriores à 0.11.5 **Descrição** A vulnerabilidade permite que invasores remotos obtenham informações confidenciais sobre o ambiente de instalação ao ler a solicitação de verificação de atualizações. **Recomendações** Para versões anteriores à 0.11.5, atualize para a versão 0.11.5 ou posterior para resolver o problema.

**Name of the Vulnerable Software and Affected Versions** TYPO3 versions 6.2.x through 6.2.15 TYPO3 versions 7.x through 7.5 **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities in unspecified frontend components. These vulnerabilities allow remote authenticated editors to inject arbitrary web script or HTML. **Recommendations** For TYPO3 versions 6.2.x through 6.2.15, update to version 6.2.16 or later. For TYPO3 versions 7.x through 7.5, update to version 7.6.1 or later.

**Name of the Vulnerable Software and Affected Versions** TYPO3 versions 4.5.0 through 4.5.31 TYPO3 versions 4.7.0 through 4.7.16 TYPO3 versions 6.0.0 through 6.0.11 TYPO3 versions 6.1.0 through 6.1.6 **Description** The issue concerns the Content Editing Wizards component, which fails to check permissions. This allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters. **Recommendations** For versions 4.5.0 through 4.5.31, update to a version that includes the necessary permission checks. For versions 4.7.0 through 4.7.16, update to a version that includes the necessary permission checks. For versions 6.0.0 through 6.0.11, update to a version that includes the necessary permission checks. For versions 6.1.0 through 6.1.6, update to a version that includes the necessary permission checks.

**Name of the Vulnerable Software and Affected Versions** Apache Solr for TYPO3 (solr) extension versions prior to 2.8.3 **Description** The issue is related to "Insecure Unserialize" and has unknown impact with remote attack vectors. **Recommendations** For versions prior to 2.8.3, update to version 2.8.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 Javascript and CSS Optimizer extension versions prior to 1.1.14 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions prior to 1.1.14, update to version 1.1.14 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 versions 4.5.x through 4.5.18 TYPO3 versions 4.6.x through 4.6.11 TYPO3 versions 4.7.x through 4.7.3 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions 4.5.x through 4.5.18, update to version 4.5.19 or later. For versions 4.6.x through 4.6.11, update to version 4.6.12 or later. For versions 4.7.x through 4.7.3, update to version 4.7.4 or later.

**Name of the Vulnerable Software and Affected Versions** bc post2facebook extension versions prior to 0.2.2 **Description** The issue is related to a cross-site scripting (XSS) vulnerability. This allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions prior to 0.2.2, update to version 0.2.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 beuserswitch extension version 0.0.1 **Description** The issue allows remote attackers to obtain sensitive information. The exact vectors used for the attack are not specified. **Recommendations** For version 0.0.1 of the beuserswitch extension, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Terminal PHP Shell (terminal) extension versions 0.3.2 and earlier for TYPO3 **Description** A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of victims via unknown vectors. **Recommendations** For Terminal PHP Shell (terminal) extension versions 0.3.2 and earlier, update to a version later than 0.3.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 UrlTool (aeurltool) extension version 0.1.0 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For UrlTool (aeurltool) extension version 0.1.0, update to a version that fixes this issue, as using outdated versions may pose a risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Euro Calculator (skt eurocalc) extension version 0.0.1 **Description** The issue is related to a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors, potentially leading to unauthorized actions on the affected system. **Recommendations** For Euro Calculator (skt eurocalc) extension version 0.0.1, consider disabling the extension until a patch is available to prevent potential exploitation.

**Name of the Vulnerable Software and Affected Versions** typo3 webservice extension versions prior to 0.3.8 **Description** The issue allows remote authenticated users to execute arbitrary code. **Recommendations** For versions prior to 0.3.8, update to version 0.3.8 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Yet another Google search (ya googlesearch) extension versions prior to 0.3.10 for TYPO3 **Description** The issue is related to a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors. **Recommendations** For versions prior to 0.3.10, update to version 0.3.10 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 White Papers (mm whtppr) extension version 0.0.4 and earlier **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. **Recommendations** For versions 0.0.4 and earlier, update to a version later than 0.0.4 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 Category-System (toi category) extension version 0.6.0 and earlier **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions 0.6.0 and earlier, update to a version later than 0.6.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** System Utilities (sysutils) extension versions 1.0.3 and earlier for TYPO3 **Description** The issue allows remote attackers to obtain sensitive information via unspecified vectors related to improper protection of the backup output directory. **Recommendations** For versions 1.0.3 and earlier, update to a version later than 1.0.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 extension 'Documents download (rtg files)' versions prior to 1.5.2 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions prior to 1.5.2, update to version 1.5.2 or later to resolve the issue.