Skip to content

Instantly share code, notes, and snippets.

View alon710's full-sized avatar
💪

Alon Barad alon710

💪
17 followers · 31 following
View GitHub Profile
@alon710
alon710 / CVE-2026-47347.md
Created June 15, 2026 15:21
CVE-2026-47347: CVE-2026-47347: Open Redirect Vulnerability in TYPO3 CMS GeneralUtility::sanitizeLocalUrl - CVE Security Report

CVE-2026-47347: CVE-2026-47347: Open Redirect Vulnerability in TYPO3 CMS GeneralUtility::sanitizeLocalUrl

CVSS Score: 5.3 Published: 2026-06-12 Full Report: https://cvereports.com/reports/CVE-2026-47347

Summary

CVE-2026-47347 is an open redirect vulnerability affecting multiple TYPO3 CMS versions. The issue resides in GeneralUtility::sanitizeLocalUrl, where an insufficient blocklist validation implementation fails to prevent browsers from normalizing malformed relative paths into external protocol-relative redirections. Attackers can exploit this to conduct phishing, session hijacking, or credential harvesting campaigns.

TL;DR

@alon710
alon710 / CVE-2026-47347.md
Created June 15, 2026 15:11
CVE-2026-47347: CVE-2026-47347: Open Redirect Vulnerability in TYPO3 CMS GeneralUtility::sanitizeLocalUrl - CVE Security Report

CVE-2026-47347: CVE-2026-47347: Open Redirect Vulnerability in TYPO3 CMS GeneralUtility::sanitizeLocalUrl

CVSS Score: 5.3 Published: 2026-06-12 Full Report: https://cvereports.com/reports/CVE-2026-47347

Summary

CVE-2026-47347 is an open redirect vulnerability affecting multiple TYPO3 CMS versions. The issue resides in GeneralUtility::sanitizeLocalUrl, where an insufficient blocklist validation implementation fails to prevent browsers from normalizing malformed relative paths into external protocol-relative redirections. Attackers can exploit this to conduct phishing, session hijacking, or credential harvesting campaigns.

TL;DR

@alon710
alon710 / CVE-2026-47349.md
Created June 15, 2026 14:51
CVE-2026-47349: CVE-2026-47349: Missing Authorization in TYPO3 CMS DataHandler Record Restoration - CVE Security Report

CVE-2026-47349: CVE-2026-47349: Missing Authorization in TYPO3 CMS DataHandler Record Restoration

CVSS Score: 5.3 Published: 2026-06-12 Full Report: https://cvereports.com/reports/CVE-2026-47349

Summary

An authenticated backend user with access to the Recycler module in TYPO3 CMS can bypass write restrictions and restore soft-deleted records on pages or database tables they are not authorized to modify. This vulnerability resides in the core DataHandler class due to missing permission checks during 'undelete' operations.

TL;DR

@alon710
alon710 / CVE-2026-47349.md
Created June 15, 2026 14:41
CVE-2026-47349: CVE-2026-47349: Missing Authorization in TYPO3 CMS DataHandler Record Restoration - CVE Security Report

CVE-2026-47349: CVE-2026-47349: Missing Authorization in TYPO3 CMS DataHandler Record Restoration

CVSS Score: 5.3 Published: 2026-06-12 Full Report: https://cvereports.com/reports/CVE-2026-47349

Summary

An authenticated backend user with access to the Recycler module in TYPO3 CMS can bypass write restrictions and restore soft-deleted records on pages or database tables they are not authorized to modify. This vulnerability resides in the core DataHandler class due to missing permission checks during 'undelete' operations.

TL;DR

@alon710
alon710 / CVE-2026-11607.md
Created June 15, 2026 14:21
CVE-2026-11607: CVE-2026-11607: Broken Access Control in TYPO3 CMS Form Framework - CVE Security Report

CVE-2026-11607: CVE-2026-11607: Broken Access Control in TYPO3 CMS Form Framework

CVSS Score: 7.6 Published: 2026-06-12 Full Report: https://cvereports.com/reports/CVE-2026-11607

Summary

CVE-2026-11607 is a critical broken access control vulnerability in TYPO3 CMS's Form Framework (ext:form). Authenticated backend users with access to the Form Framework can load unauthorized YAML configurations, bypassing file extension restrictions. This allows the execution of arbitrary SQL commands via the SaveToDatabase finisher, leading to privilege escalation to administrator level.

TL;DR

@alon710
alon710 / CVE-2026-11607.md
Created June 15, 2026 14:11
CVE-2026-11607: CVE-2026-11607: Broken Access Control in TYPO3 CMS Form Framework - CVE Security Report

CVE-2026-11607: CVE-2026-11607: Broken Access Control in TYPO3 CMS Form Framework

CVSS Score: 7.6 Published: 2026-06-12 Full Report: https://cvereports.com/reports/CVE-2026-11607

Summary

CVE-2026-11607 is a critical broken access control vulnerability in TYPO3 CMS's Form Framework (ext:form). Authenticated backend users with access to the Form Framework can load unauthorized YAML configurations, bypassing file extension restrictions. This allows the execution of arbitrary SQL commands via the SaveToDatabase finisher, leading to privilege escalation to administrator level.

TL;DR

@alon710
alon710 / GHSA-G7R4-M6W7-QQQR.md
Created June 15, 2026 13:41
GHSA-G7R4-M6W7-QQQR: GHSA-G7R4-M6W7-QQQR: Path Traversal and Arbitrary File Read in esbuild Development Server on Windows - CVE Security Report

GHSA-G7R4-M6W7-QQQR: GHSA-G7R4-M6W7-QQQR: Path Traversal and Arbitrary File Read in esbuild Development Server on Windows

CVSS Score: 7.5 Published: 2026-06-12 Full Report: https://cvereports.com/reports/GHSA-G7R4-M6W7-QQQR

Summary

Improper validation of backslash character separators in esbuild's local development server allows path traversal on Windows systems.

TL;DR

@alon710
alon710 / GHSA-GV7W-RQVM-QJHR.md
Created June 15, 2026 12:11
GHSA-GV7W-RQVM-QJHR: GHSA-GV7W-RQVM-QJHR: Remote Code Execution via Missing Binary Integrity Verification in esbuild Deno Integration - CVE Security Report

GHSA-GV7W-RQVM-QJHR: GHSA-GV7W-RQVM-QJHR: Remote Code Execution via Missing Binary Integrity Verification in esbuild Deno Integration

CVSS Score: 8.1 Published: 2026-06-12 Full Report: https://cvereports.com/reports/GHSA-GV7W-RQVM-QJHR

Summary

An issue was discovered in the Deno integration of the esbuild package. The module fails to verify the integrity of downloaded native binary packages from NPM registries before writing and executing them on the local filesystem. This allows an attacker who controls the NPM_CONFIG_REGISTRY environment variable or intercepts the network connection to execute arbitrary native code on the host machine.

TL;DR

@alon710
alon710 / GHSA-CHGR-C6PX-7XPP.md
Created June 15, 2026 11:41
GHSA-CHGR-C6PX-7XPP: GHSA-chgr-c6px-7xpp: Thread-Safety Data Race in PyO3 Closure Wrapping - CVE Security Report

GHSA-CHGR-C6PX-7XPP: GHSA-chgr-c6px-7xpp: Thread-Safety Data Race in PyO3 Closure Wrapping

CVSS Score: 5.9 Published: 2026-06-12 Full Report: https://cvereports.com/reports/GHSA-CHGR-C6PX-7XPP

Summary

A thread-safety vulnerability exists in the PyO3 library versions prior to 0.29.0 due to a missing Sync trait bound on closure type parameters. This omission allows safe Rust code to register non-thread-safe closures as Python callables, leading to concurrent shared mutation and data races during multithreaded execution.

TL;DR

@alon710
alon710 / GHSA-CH3Q-CW5R-F4HG.md
Created June 15, 2026 11:11
GHSA-CH3Q-CW5R-F4HG: GHSA-CH3Q-CW5R-F4HG: Unbounded SSH field lengths cause excessive memory allocation in ConnectBot SSH Client Library - CVE Security Report

GHSA-CH3Q-CW5R-F4HG: GHSA-CH3Q-CW5R-F4HG: Unbounded SSH field lengths cause excessive memory allocation in ConnectBot SSH Client Library

CVSS Score: 7.5 Published: 2026-06-12 Full Report: https://cvereports.com/reports/GHSA-CH3Q-CW5R-F4HG

Summary

A denial of service vulnerability in the ConnectBot SSH Client Library (cbssh) up to version 0.3.0 allows remote attackers to cause uncontrolled resource consumption. The library uses Kaitai Struct to parse incoming binary streams, but failed to validate the declared length of SSH fields against the physical stream size, leading to excessive memory allocation and OutOfMemoryError crashes.

TL;DR