Fluid Attacks Database

Description

TYPO3 SQL Injection in low-level Query Generator An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. Because escaping of user-submitted content is mishandled, the class QueryGenerator is vulnerable to SQL injection. Exploitation requires having the system extension ext:lowlevel installed, and a valid backend user who has administrator privileges.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
packagist	typo3/cms-core	>=8.0 <8.7.30 \|\| >=9.0 <9.5.12 \|\| >=10.0 <10.2.2	8.7.30, 9.5.12, 10.2.2
packagist	typo3/cms	>=8.0 <8.7.30 \|\| >=9.0 <9.5.12 \|\| >=10.0 <10.2.2	8.7.30, 9.5.12, 10.2.2

Aliases

1. CVE-2019-198502. NVD-2019-198503. OSV-2019-198504. GCVE-2019-19850

References

1. https://review.typo3.org/q/%2522Resolves:+%252389452%2522+topic:security2. https://typo3.org/security/advisory/typo3-core-sa-2019-025

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.