CVE-2024-34355: TYPO3 vulnerable to an HTML Injection in the History Module

May 14, 2024

Problem

The history backend module is vulnerable to HTML injection. Although Content-Security-Policy headers effectively prevent JavaScript execution, adversaries can still inject malicious HTML markup. Exploiting this vulnerability requires a valid backend user account.

Solution

Update to TYPO3 version 13.1.1 that fixes the problem described.

Credits

Thanks to TYPO3 core team member Andreas Kienast who reported this issue and to TYPO3 core & security team Benjamin Franzke who fixed the issue.

References

TYPO3-CORE-SA-2024-007

References

github.com/TYPO3/typo3
github.com/TYPO3/typo3/commit/56afa304ba8b5ad302e15df5def71bcc8d820375
github.com/TYPO3/typo3/security/advisories/GHSA-xjwx-78x7-q6jc
github.com/advisories/GHSA-xjwx-78x7-q6jc
nvd.nist.gov/vuln/detail/CVE-2024-34355
typo3.org/security/advisory/typo3-core-sa-2024-007

Code Behaviors & Features

Detect and mitigate CVE-2024-34355 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →