First published: Tue Nov 14 2023(Updated: )
TYPO3 is an open source PHP based web content management system released under the GNU GPL. In affected versions DOM processing instructions are not handled correctly. This allows bypassing the cross-site scripting mechanism of typo3/html-sanitizer. This vulnerability has been addressed in versions 1.5.3 and 2.1.4. Users are advised to upgrade. There are no known workarounds for this vulnerability.
> ### CVSS: `CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N/E:F/RL:O/RC:C` (4.4) ### Problem DOM processing instructions are not handled correctly. This allows bypassing the cross-site scripting mechanism of [`typo3/html-sanitizer`](https://packagist.org/packages/typo3/html-sanitizer). ### Solution Update to `typo3/html-sanitizer` versions 1.5.3 or 2.1.4 that fix the problem described. ### Credits Thanks to Yaniv Nizry and Niels Dossche who reported this issue, and to TYPO3 core & security team member Oliver Hader who fixed the issue. ### References * [TYPO3-CORE-SA-2023-007](https://typo3.org/security/advisory/typo3-core-sa-2023-007) * [Context & Details at `masterminds/html5`](https://github.com/Masterminds/html5-php/issues/241)
Credit: security-advisories@github.com security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
composer/typo3/html-sanitizer | >=2.0.0<=2.1.3 | 2.1.4 |
composer/typo3/html-sanitizer | >=1.0.0<=1.5.2 | 1.5.3 |
TYPO3 HTML Sanitizer | >=1.0.0<1.5.3 | |
TYPO3 HTML Sanitizer | >=2.0.0<2.1.4 | |
Typo3 Typo3 | >=8.7.42<8.7.55 | |
Typo3 Typo3 | >=9.5.29<9.5.44 | |
Typo3 Typo3 | >=10.4.19<10.4.41 | |
Typo3 Typo3 | >=11.3.2<11.5.33 | |
Typo3 Typo3 | >=12.0.0<12.4.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-47125 is medium with a CVSS score of 4.4.
CVE-2023-47125 affects the `typo3/html-sanitizer` package version 2.0.0 to 2.1.3 and version 1.0.0 to 1.5.2.
To fix CVE-2023-47125, upgrade the `typo3/html-sanitizer` package to version 2.1.4 or version 1.5.3.
The CWE ID for CVE-2023-47125 is CWE-79.
You can find more information about CVE-2023-47125 in the following references: [GitHub Security Advisory](https://github.com/TYPO3/html-sanitizer/security/advisories/GHSA-mm79-jhqm-9j54), [GitHub Commit](https://github.com/TYPO3/html-sanitizer/commit/b8f90717251d968c49dc77f8c1e5912e2fbe0dff), [TYPO3 Security Advisory](https://typo3.org/security/advisory/typo3-core-sa-2023-007).