Name of the Vulnerable Software and Affected Versions TYPO3 (affected versions not specified)

Description The issue arises from the fact that Phar files can act as self-extracting archives, leading to the execution of source code when invoked. These files can be disguised with various extensions, such as "bundle.txt", allowing them to be uploaded and persisted to a TYPO3 installation without being denied. A missing sanitization of user input enables manipulated URLs in TYPO3 backend forms to invoke such Phar files. Exploitation requires a valid backend user account. While the attack vector could theoretically be possible in the TYPO3 frontend, no functional exploit has been identified yet.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.