HTTP: Typo3 CMS SanitizeLocalUrl Cross-Site Scripting

This signature detects attempts to exploit a known vulnerability against Typo3 CMS. A remote unauthenticated attacker can leverage the vulnerability to achieve cross-site scripting attacks.

Extended Description

The sanitizeLocalUrl function in TYPO3 6.x before 6.2.15, 7.x before 7.4.0, 4.5.40, and earlier allows remote authenticated users to bypass the XSS filter and conduct cross-site scripting (XSS) attacks via a base64 encoded data URI, as demonstrated by the (1) returnUrl parameter to show_rechis.php and the (2) redirect_url parameter to index.php.

Affected Products

Typo3 typo3

References

CVE: CVE-2015-5956

Short Name
HTTP:XSS:TYPO3-LOCALURL-CMS
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CMS CVE-2015-5956 Cross-Site SanitizeLocalUrl Scripting Typo3
Release Date
10/07/2015
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3337
False Positive
Unknown
Vendors

Typo3

CVSS Score

3.5

Found a potential security threat?