Allele Security Alert
Cross-Site Scripting in CKEditor using img tag
TYPO3 8.5.0 to 8.7.20 and 9.0.0 to 9.5.1
TYPO3 versions 8.7.21 or 9.5.2
Proof of concept
It has been discovered, that the third party library CKEditor is vulnerable to cross-site scripting. A valid backend user account is needed in order to exploit this vulnerability.
CKEditor 4.9.2 fixes an XSS vulnerability in the Enhanced Image (image2) plugin. The vulnerability stemmed from the fact that it was possible to execute XSS inside CKEditor using the <img> tag and specially crafted HTML.
Kyaw Min Thein, Peter Kraume and Benni Mack (TYPO3 core team)
TYPO3 9.5.2, 8.7.21 and 7.6.32 security releases published
TYPO3-CORE-SA-2018-005: Cross-Site Scripting in CKEditor
[SECURITY] Update library CKEditor to 4.11.1
CKEditor 4.9.2 with a security patch released
[TYPO3-announce] Announcing TYPO3 v9.5.2, v8.7.21 and v7.6.32 security releases
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: February 1, 2019