CVE-2009-3628
https://notcve.org/view.php?id=CVE-2009-3628
The Backend subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 allows remote authenticated users to determine an encryption key via crafted input to a tt_content form element. El subcomponente Backend de TYPO3 v4.0.13 y anteriores, v4.1.x anteriores a v4.1.13, v4.2.x anteriores a v4.2.10 y v4.3.x anteriores a v4.3beta2 permite a atacantes remotos autenticados determinar la clave de encriptación a través de una entrada modificada al elemento de formulario tt_content. • http://marc.info/?l=oss-security&m=125632856206736&w=2 http://secunia.com/advisories/37122 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-016 http://www.securityfocus.com/bid/36801 http://www.vupen.com/english/advisories/2009/3009 https://exchange.xforce.ibmcloud.com/vulnerabilities/53917 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2009-2103
https://notcve.org/view.php?id=CVE-2009-2103
SQL injection vulnerability in the Frontend MP3 Player (fe_mp3player) 0.2.3 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Vulnerabilidad de inyección SQL en la extensión Frontend MP3 Player (fe_mp3player) v0.2.3 y anteriores para TYPO3, permite a atacantes remotos ejecutar comandos SQL de su elección a través de vectores no especificados. • http://osvdb.org/55123 http://secunia.com/advisories/35484 http://typo3.org/extensions/repository/view/fe_mp3player/0.2.4 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-008 http://www.securityfocus.com/bid/35394 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2009-0816
https://notcve.org/view.php?id=CVE-2009-0816
Multiple cross-site scripting (XSS) vulnerabilities in the backend user interface in TYPO3 3.3.x through 3.8.x, 4.0 before 4.0.12, 4.1 before 4.1.10, 4.2 before 4.2.6, and 4.3alpha1 allow remote attackers to inject arbitrary web script or HTML via unspecified fields. Múltiples vulnerabilidades de tipo cross-site-scripting (XSS) en la interfaz de usuario backend en TYPO3 versión 3.3.x hasta 3.8.x, versión 4.0 anterior a 4.0.12, versión 4.1 anterior a 4.1.10, versión 4.2 anterior a 4.2.6 y versión 4.3alpha1, permiten a los atacantes remotos inyectar script web o HTML arbitrario por medio de campos no especificados. • http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-002 http://www.debian.org/security/2009/dsa-1720 http://www.openwall.com/lists/oss-security/2009/02/10/6 http://www.securitytracker.com/id?1021709 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2009-0815 – TYPO3 < 4.0.12/4.1.10/4.2.6 - 'jumpUrl' Remote File Disclosure
https://notcve.org/view.php?id=CVE-2009-0815
The jumpUrl mechanism in class.tslib_fe.php in TYPO3 3.3.x through 3.8.x, 4.0 before 4.0.12, 4.1 before 4.1.10, 4.2 before 4.2.6, and 4.3alpha1 leaks a hash secret (juHash) in an error message, which allows remote attackers to read arbitrary files by including the hash in a request. El mecanismo jumpUrl en la biblioteca class.tslib_fe.php en TYPO3 versión 3.3.x hasta 3.8.x, versión 4.0 anterior a 4.0.12, versión 4.1 anterior a 4.1.10, versión 4.2 anterior a 4.2.6 y versión 4.3alpha1, filtra un hash secreto (juHash) en un mensaje de error, que permite a los atacantes remotos leer archivos arbitrarios mediante la inclusión del hash en una petición. • https://www.exploit-db.com/exploits/8038 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-002 http://www.debian.org/security/2009/dsa-1720 http://www.openwall.com/lists/oss-security/2009/02/10/6 http://www.securitytracker.com/id?1021710 http://web.archive.org/web/20090212165636/http://secunia.com:80/advisories/33829 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2009-0255 – TYPO3 Sa-2009-001 Weak Encryption Key File Disclosure
https://notcve.org/view.php?id=CVE-2009-0255
The System extension Install tool in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 creates the encryption key with an insufficiently random seed, which makes it easier for attackers to crack the key. La herramienta de instalación de extensiones del sistema en TYPO3 v4.0.9 a v4.0.0, v4.1.0 a v4.1.7, v4.2.0 y v4.2.3 crea la clave de encriptación con una insuficiente aleatoriedad en la semilla, lo que facilita craquear la clave a los atacantes. • http://secunia.com/advisories/33617 http://secunia.com/advisories/33679 http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-001 http://www.debian.org/security/2009/dsa-1711 http://www.securityfocus.com/bid/33376 https://exchange.xforce.ibmcloud.com/vulnerabilities/48132 http://blog.c22.cc/advisories/typo3-sa-2009-001 • CWE-330: Use of Insufficiently Random Values •