Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerability

vulnerability announce CVE-2012-1070 CVE-2012-1071 CVE-2012-1072

TYPO3: vulnerabilities of extensions

Synthesis of the vulnerability

An attacker can use several vulnerabilities of TYPO3 extensions in order to generate a Cross Site Scripting, to inject SQL, to obtain information, or to execute code.
Severity: 3/4.
Creation date: 02/02/2012.

Impacted products

Description of the vulnerability

Several vulnerabilities were announced in TYPO3 extensions.

An attacker can use a SQL injection in the Kitchen recipe (mv_cooking) extension. [severity:2/4; BID-51825, CVE-2012-1071, >]

An attacker can use a SQL injection and a Cross Site Scripting in the Category-System (toi_category) extension. [severity:2/4; BID-51834, CVE-2012-1072, CVE-2012-1073, >]

An attacker can use a SQL injection in the White Papers (mm_whtppr) extension. [severity:2/4; BID-51837, CVE-2012-1074, >]

An attacker can use a SQL injection and a Cross Site Scripting in the Documents download (rtg_files) extension. [severity:2/4; BID-51838, CVE-2012-1075, CVE-2012-1076, >]

An attacker can use a SQL injection and a Cross Site Scripting in the Post data records to facebook (bc_post2facebook) extension. [severity:2/4; BID-51846, CVE-2012-1077, CVE-2012-1087, >]

An attacker can obtain information via the System Utilities (sysutils) extension. [severity:1/4; BID-51844, CVE-2012-1078, >]

An attacker can execute code via the Webservices for TYPO3 (typo3_webservice) extension. [severity:3/4; BID-51843, CVE-2012-1079, >]

An attacker can use a Cross Site Scripting in the CSS styled Filelinks (css_filelinks) extension. [severity:2/4; BID-51850, >]

An attacker can use a Cross Site Scripting in the Modern FAQ (irfaq) extension. [severity:2/4; BID-51845, CVE-2012-1070, >]

An attacker can use a Cross Site Scripting in the Euro Calculator (skt_eurocalc) extension. [severity:2/4; BID-51848, CVE-2012-1080, >]

An attacker can use a Cross Site Scripting in the Yet another Google search (ya_googlesearch) extension. [severity:2/4; BID-51851, CVE-2012-1081, >]

An attacker can use a Cross Site Scripting and a Cross Site Request Forgery in the Terminal PHP Shell (terminal) extension. [severity:2/4; BID-51849, CVE-2012-1082, CVE-2012-1083, >]

An attacker can use a Cross Site Scripting and obtain information via the BE User Switch (beuserswitch) extension. [severity:2/4; BID-51852, CVE-2012-1084, CVE-2012-1085, >]

An attacker can use a Cross Site Scripting in the Additional TCA Forms (jftcaforms) extension. [severity:2/4; BID-51854, >]

An attacker can use a Cross Site Scripting in the UrlTool (aeurltool) extension. [severity:2/4; BID-51855, CVE-2012-1086, >]

Share this bulletin

Delicious Digg Facebook Google bookmarks LinkedIn Mail Reddit StumbleUpon Technorati Twitter Yahoo 

Complete Vigil@nce bulletin

TYPO3: vulnerabilities of extensions

Characteristics

Title: TYPO3: vulnerabilities of extensions.
Keywords: Additional CSS Calculator Category-System Cross Documents Euro FAQ Filelinks Forgery Forms Google Kitchen Modern PHP Papers Post Request SQL Scripting Shell Site Switch System TCA TYPO3 Terminal UrlTool User Utilities Webservices White Yet bc_post2facebook css_filelinks extensions mm_whtppr mv_cooking rtg_files skt_eurocalc toi_category typo3_webservice vulnerabilities ya_googlesearch.
Identifiers: BID-51825, BID-51834, BID-51837, BID-51838, BID-51843, BID-51844, BID-51845, BID-51846, BID-51848, BID-51849, BID-51850, BID-51851, BID-51852, BID-51854, BID-51855, CVE-2012-1070, CVE-2012-1071, CVE-2012-1072, CVE-2012-1073, CVE-2012-1074, CVE-2012-1075, CVE-2012-1076, CVE-2012-1077, CVE-2012-1078, CVE-2012-1079, CVE-2012-1080, CVE-2012-1081, CVE-2012-1082, CVE-2012-1083, CVE-2012-1084, CVE-2012-1085, CVE-2012-1086, CVE-2012-1087, TYPO3-EXT-SA-2012-001, VIGILANCE-VUL-11337.

Information sources

Publications and announces
Source example: TYPO3-EXT-SA-2012-001: Several vulnerabilities in third party extensions

Solutions for this vulnerability

Patch or workaround

Supplements

Vulnerability : Kitchen recipe (mv_cooking)

An attacker can use a SQL injection in the Kitchen recipe (mv_cooking) extension.
Severity: 2/4.
Identifiers: BID-51825, CVE-2012-1071.

Vulnerability : Category-System (toi_category)

An attacker can use a SQL injection and a Cross Site Scripting in the Category-System (toi_category) extension.
Severity: 2/4.
Identifiers: BID-51834, CVE-2012-1072, CVE-2012-1073.

Vulnerability : White Papers (mm_whtppr)

An attacker can use a SQL injection in the White Papers (mm_whtppr) extension.
Severity: 2/4.
Identifiers: BID-51837, CVE-2012-1074.

Vulnerability : Documents download (rtg_files)

An attacker can use a SQL injection and a Cross Site Scripting in the Documents download (rtg_files) extension.
Severity: 2/4.
Identifiers: BID-51838, CVE-2012-1075, CVE-2012-1076.

Vulnerability : Post data records to facebook (bc_post2facebook)

An attacker can use a SQL injection and a Cross Site Scripting in the Post data records to facebook (bc_post2facebook) extension.
Severity: 2/4.
Identifiers: BID-51846, CVE-2012-1077, CVE-2012-1087.

Vulnerability : System Utilities (sysutils)

An attacker can obtain information via the System Utilities (sysutils) extension.
Severity: 1/4.
Identifiers: BID-51844, CVE-2012-1078.

Vulnerability : Webservices for TYPO3 (typo3_webservice)

An attacker can execute code via the Webservices for TYPO3 (typo3_webservice) extension.
Severity: 3/4.
Identifiers: BID-51843, CVE-2012-1079.

Vulnerability : CSS styled Filelinks (css_filelinks)

An attacker can use a Cross Site Scripting in the CSS styled Filelinks (css_filelinks) extension.
Severity: 2/4.
Identifiers: BID-51850.

Vulnerability : Modern FAQ (irfaq)

An attacker can use a Cross Site Scripting in the Modern FAQ (irfaq) extension.
Severity: 2/4.
Identifiers: BID-51845, CVE-2012-1070.

Vulnerability : Euro Calculator (skt_eurocalc)

An attacker can use a Cross Site Scripting in the Euro Calculator (skt_eurocalc) extension.
Severity: 2/4.
Identifiers: BID-51848, CVE-2012-1080.

Vulnerability : Yet another Google search (ya_googlesearch)

An attacker can use a Cross Site Scripting in the Yet another Google search (ya_googlesearch) extension.
Severity: 2/4.
Identifiers: BID-51851, CVE-2012-1081.

Vulnerability : Terminal PHP Shell (terminal)

An attacker can use a Cross Site Scripting and a Cross Site Request Forgery in the Terminal PHP Shell (terminal) extension.
Severity: 2/4.
Identifiers: BID-51849, CVE-2012-1082, CVE-2012-1083.

Vulnerability : BE User Switch (beuserswitch)

An attacker can use a Cross Site Scripting and obtain information via the BE User Switch (beuserswitch) extension.
Severity: 2/4.
Identifiers: BID-51852, CVE-2012-1084, CVE-2012-1085.

Vulnerability : Additional TCA Forms (jftcaforms)

An attacker can use a Cross Site Scripting in the Additional TCA Forms (jftcaforms) extension.
Severity: 2/4.
Identifiers: BID-51854.

Vulnerability : UrlTool (aeurltool)

An attacker can use a Cross Site Scripting in the UrlTool (aeurltool) extension.
Severity: 2/4.
Identifiers: BID-51855, CVE-2012-1086.

Computer vulnerabilities tracking service

Vigil@nce provides applications vulnerabilities announces. The technology watch team tracks security threats targeting the computer system. Each administrator can customize the list of products for which he wants to receive vulnerability alerts. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system.



















Copyright 1999-2012 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française