Miggo Logo
Miggo Vulnerability Database
CVE-2020-15514

CVE-2020-15514: jh_captcha for Typo3 XSS Vulnerability

5.4

CVSS Score
3.1

Basic Information

CVE ID
CVE-2020-15514
GHSA ID
GHSA-23fm-v895-3qxq
EPSS Score
0.43188%
CWE
CWE-79
Published
5/24/2022
Updated
7/13/2023
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
haffner/jh_captchacomposer>= 3.0.0, <= 3.0.23.0.3
haffner/jh_captchacomposer<= 2.1.32.1.4

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from improper neutralization of user-controlled input (from TypoScript settings) in HTML context. Since the advisory explicitly mentions backend users with TypoScript access can exploit this, the most probable location is in the CAPTCHA rendering logic where configuration parameters are injected into the output without escaping. The ViewHelper component responsible for rendering CAPTCHA elements would be a typical location for this vulnerability in TYPO3 extensions. Confidence is medium due to lack of direct code access, but aligns with TYPO3 XSS patterns and advisory details.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** j*_**pt*** *xt*nsion t*rou** *.*.*, *n* *.x t*rou** *.*.*, *or TYPO* *llows XSS.

Reasoning

T** vuln*r**ility st*ms *rom improp*r n*utr*liz*tion o* us*r-*ontroll** input (*rom TypoS*ript s*ttin*s) in *TML *ont*xt. Sin** t** **visory *xpli*itly m*ntions ***k*n* us*rs wit* TypoS*ript ****ss **n *xploit t*is, t** most pro***l* lo**tion is in t