CVE-2021-32768 Information

Description

TYPO3 is an open source PHP based web content management system released under the GNU GPL. In affected versions failing to properly parse sanitize and encode malicious rich-text content the content rendering process in the website frontend is vulnerable to cross-site scripting. Corresponding rendering instructions via TypoScript functionality HTMLparser does not consider all potentially malicious HTML tag & attribute combinations per default. In default scenarios a valid backend user account is needed to exploit this vulnerability. In case custom plugins used in the website frontend accept and reflect rich-text content submitted by users no authentication is required. Update to TYPO3 versions 7.6.53 ELTS 8.7.42 ELTS 9.5.29 10.4.19 11.3.2 that fix the problem described.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Reference

https://typo3.org/security/advisory/typo3-core-sa-2021-013 https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-c5c9-8c6m-727v

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

CHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

NONE

Base Severity

6.1