GHSA-43cf-7f3h-38rg: Privilege Escalation in TYPO3 Neos

May 17, 2024

It has been discovered that TYPO3 Neos is vulnerable to Privilege Escalation. Logged in editors could access, create and modify content nodes that exist in the workspace of other editors.

References

github.com/FriendsOfPHP/security-advisories/blob/master/neos/neos/2015-03-28.yaml
github.com/advisories/GHSA-43cf-7f3h-38rg
github.com/neos/neos
www.neos.io/blog/neos-sa-2015-001.html

Code Behaviors & Features

Detect and mitigate GHSA-43cf-7f3h-38rg with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →