CVE-2023-50461

HIGH8.8

Configuration Injection in extension "Direct Mail" (direct_mail)

發布日:2023/12/13修改日:2024/11/30

描述

The “Configuration” backend module of the extension allows an authenticated user to write arbitrary page TSConfig for folders configured as “Direct Mail”. Exploiting the vulnerability may lead to Configuration Injection (TYPO3 10.4 and above) and to Arbitrary Code Execution (TYPO3 9.5 and below). A valid backend user account having access to the Direct Mail "Configuration" backend module is needed in order to exploit this vulnerability.

受影響套件(1)

Packagist/directmailteam/direct-mail>= 8.0.0, < 9.5.2

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	HIGH8.8	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

參考連結(3)

PATCHhttps://github.com/kartolo/direct_mail
WEBhttps://github.com/FriendsOfPHP/security-advisories/blob/master/directmailteam/direct-mail/CVE-2023-50461.yaml
WEBhttps://typo3.org/security/advisory/typo3-ext-sa-2023-011