TYPO3 Brute Force Protection Bypass in backend login

2024-05-3021:12:16

CWE-20

GitHub Advisory Database

github.com

typo3

brute force

backend login

protection bypass

special request

AI Score

7.1

Confidence

High

JSON

The backend login has a basic brute force protection implementation which pauses for 5 seconds if wrong credentials are given. This pause however could be bypassed by forging a special request, making brute force attacks on backend editor credentials more feasible.

Affected configurations

Vulners

Node

typo3typo3_cmsRange7.0.0–7.3.1

typo3typo3_cmsRange6.2.0–6.2.14

VendorProductVersionCPE
typo3typo3_cms*cpe:2.3:a:typo3:typo3_cms:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
typo3	typo3_cms	*	cpe:2.3:a:typo3:typo3_cms::::::::

References

github.com/advisories/GHSA-jqr8-q455-xx45

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-5.yaml

github.com/TYPO3/typo3/commit/0b67290bbd941c07b0101bbfd6c7aadcbb93c75c

github.com/TYPO3/typo3/commit/0f3fb37674688aba5a44ca6f5df7f8a327a5b5f6

typo3.org/security/advisory/typo3-core-sa-2015-006

typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-006

AI Score

7.1

Confidence

High

JSON