====================================================================

                             CERT-Renater

                  Note d'Information No. 2012/VULN499
____________________________________________________________________

DATE                : 21/12/2012

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S) : Systems running commerce for TYPO3 versions prior
                         to 0.12.8.

======================================================================
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-013-1/
______________________________________________________________________


TYPO3-EXT-SA-2012-013: Several Vulnerabilities in extension commerce
(commerce)

December 21, 2012

Category: TYPO3 Extension
Author: Markus Bucher
Keywords: TYPO3, security, TYPO3-EXT-SA-2012-013, extension, commerce


It has been discovered that the extension commerce (commerce) is
vulnerable to Cross Site Scripting.


Component Type: Third party extension. This extension is not a part of
the TYPO3 default installation.

Affected Versions: Version 0.12.7 and below

Vulnerability Types: Cross Site Scripting

Severity: Medium

Suggested CVSS v2.0: AV:N/AC:L/Au:S/C:P/I:C/A:P/E:P/RL:O/RC:C (What's that?)

Release Date: December 21, 2012


Problem Description:

Failing to encode user data for the HTML output, commerce is
susceptible to Cross Site Scripting. Backend editor rights are required
to exploit this vulnerability.


Solution: An updated version 0.12.8 is available from the TYPO3
extension manager and at
typo3.org/extensions/repository/view/commerce/0.12.8/t3x/


Credits: Thanks to Tom Rüther who discovered and reported this issue.
Further credits go to security team member Markus Bucher



General advice: Follow the recommendations that are given in the TYPO3
Security Guide. Please subscribe to the typo3-announce mailing list to
receive future Security Bulletins via E-mail.


======================================================================

=========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
=========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44          +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41          +
+ 75013 Paris           | email: certsvp@renater.fr     +
=========================================================