Privilege Escalation in TYPO3 Neos
Moderate severity
GitHub Reviewed
Published
May 17, 2024
to the GitHub Advisory Database
•
Updated May 17, 2024
Package
Affected versions
>= 1.1.0, < 1.1.3
>= 1.2.0, < 1.2.3
Patched versions
1.1.3
1.2.3
Description
Published to the GitHub Advisory Database
May 17, 2024
Reviewed
May 17, 2024
Last updated
May 17, 2024
It has been discovered that TYPO3 Neos is vulnerable to Privilege Escalation. Logged in editors could access, create and modify content nodes that exist in the workspace of other editors.
References