Miggo Logo
Miggo Vulnerability Database
GHSA-22q7-cg4r-p9mx

GHSA-22q7-cg4r-p9mx: TYPO3 Cross-Site Scripting in Fluid ViewHelpers

6.1

CVSS Score
3.1

Basic Information

CVE ID
-
GHSA ID
GHSA-22q7-cg4r-p9mx
EPSS Score
-
CWE
CWE-79
Published
5/30/2024
Updated
5/30/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
typo3/cms-corecomposer>= 8.0.0, < 8.7.238.7.23
typo3/cms-corecomposer>= 9.0.0, < 9.5.49.5.4

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from Fluid ViewHelpers not applying context-aware escaping. The TranslateViewHelper is specifically called out in TYPO3's security practices as requiring careful escaping due to translation injection risks. The HtmlViewHelper is implicated because the advisory references improper encoding during web page generation, which aligns with HTML output handling. While exact commit details are unavailable, TYPO3's patch notes for these versions emphasize ViewHelper escaping improvements, and these components are core XSS surfaces in Fluid templating.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

**ilin* to prop*rly *n*o** us*r input, t*mpl*t*s usin* *uilt-in *lui* Vi*w**lp*rs *r* vuln*r**l* to *ross-sit* s*riptin*.

Reasoning

T** vuln*r**ility st*ms *rom *lui* Vi*w**lp*rs not *pplyin* *ont*xt-*w*r* *s**pin*. T** Tr*nsl*t*Vi*w**lp*r is sp**i*i**lly **ll** out in TYPO*'s s**urity pr**ti**s *s r*quirin* **r**ul *s**pin* *u* to tr*nsl*tion inj**tion risks. T** *tmlVi*w**lp*r