{"id":205,"date":"2013-10-11T17:36:16","date_gmt":"2013-10-11T15:36:16","guid":{"rendered":"https:\/\/artif.com\/blog\/?p=205"},"modified":"2021-06-25T10:44:19","modified_gmt":"2021-06-25T08:44:19","slug":"syss_sicherheitsluecke_typo3","status":"publish","type":"post","link":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html","title":{"rendered":"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c"},"content":{"rendered":"<p>Wie vor kurzem bekannt gegeben wurde, hat die T\u00fcbinger SySS GmbH am 24. Mai 2013 einen Sicherheitsfehler im TYPO3 System entdeckt. Die Sicherheitsl\u00fccke bezieht sich auf den Dateimanager bei dem jegliche tats\u00e4chliche Dateioperation (Hochladen, Anlegen, Umbenennen, Bearbeiten) per AJAX-Aufruf an untergeordnete URLs weitergegeben wird. Die Sicherheitsl\u00fccke welche die Systeme 6.0 und aufsteigend betroffen hat, wurde bereits durch zwei Patches behoben, welche nat\u00fcrlich von uns direkt nach Erscheinen eingepflegt wurden. Diese Leistung bieten wir nicht nur Kunden, an die ein von uns erstelltes System haben, gerne erstellen wir Ihnen ein Angebot um die Sicherheit Ihres System zu verbessern und diese dauerhaft zu optimieren.<\/p>\n<p>Weitere Informationen zur TYPO3 Sicherheitsl\u00fccke k\u00f6nnen Sie im angeh\u00e4ngten\u00a0<a href=\"https:\/\/artif.com\/blog\/wp-content\/uploads\/2013\/10\/newsletter_q3_13.pdf\">SySS Newsletter 3 \/ 2013<\/a> nachlesen.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Wie vor kurzem bekannt gegeben wurde, hat die T\u00fcbinger SySS GmbH am 24. Mai 2013 einen Sicherheitsfehler im TYPO3 System entdeckt. Die Sicherheitsl\u00fccke bezieht sich auf den Dateimanager bei dem jegliche tats\u00e4chliche Dateioperation (Hochladen, Anlegen, Umbenennen, Bearbeiten) per AJAX-Aufruf an untergeordnete URLs weitergegeben wird. Die Sicherheitsl\u00fccke welche die Systeme 6.0 und aufsteigend betroffen hat, wurde&#8230;<\/p>\n<p><span class=\"hidden-desktop article_mobileCategory\"><a href=\"https:\/\/artif.com\/blog\/category\/typo3\" title=\"Alle Artikel in TYPO3\"><span class=\"hidden-desktop articleCategory_icon icon-typo3\"><\/span> TYPO3<\/a><\/span><span class=\"hidden-desktop article_mobileCategory\"><a href=\"https:\/\/artif.com\/blog\/category\/it-sicherheit\" title=\"Alle Artikel in IT-Sicherheit\"><span class=\"hidden-desktop articleCategory_icon icon-it-sicherheit\"><\/span> IT-Sicherheit<\/a><\/span><a class=\"article_moreLink\" href=\"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html\" aria-label=\"Weiterlesen: SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c\"><span class=\"icon icon-readmore\"><\/span> Weiterlesen<\/a><\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,7],"tags":[],"class_list":["post-205","post","type-post","status-publish","format-standard","hentry","category-typo3","category-it-sicherheit"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c - Blog artif T\u00fcbingen<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html\" \/>\n<meta property=\"og:locale\" content=\"de_DE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c - Blog artif T\u00fcbingen\" \/>\n<meta property=\"og:description\" content=\"Wie vor kurzem bekannt gegeben wurde, hat die T\u00fcbinger SySS GmbH am 24. Mai 2013 einen Sicherheitsfehler im TYPO3 System entdeckt. Die Sicherheitsl\u00fccke bezieht sich auf den Dateimanager bei dem jegliche tats\u00e4chliche Dateioperation (Hochladen, Anlegen, Umbenennen, Bearbeiten) per AJAX-Aufruf an untergeordnete URLs weitergegeben wird. Die Sicherheitsl\u00fccke welche die Systeme 6.0 und aufsteigend betroffen hat, wurde... TYPO3 IT-Sicherheit Weiterlesen\" \/>\n<meta property=\"og:url\" content=\"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html\" \/>\n<meta property=\"og:site_name\" content=\"Blog artif T\u00fcbingen\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/pages\/TYPO3-Agentur-artif-Gmbh-Co-KG\/101490748200\" \/>\n<meta property=\"article:published_time\" content=\"2013-10-11T15:36:16+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-06-25T08:44:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/artif.com\/blog\/wp-content\/uploads\/2021\/05\/artif-logo.png\" \/>\n\t<meta property=\"og:image:width\" content=\"512\" \/>\n\t<meta property=\"og:image:height\" content=\"512\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Andreas Brus\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@artifcom\" \/>\n<meta name=\"twitter:site\" content=\"@artifcom\" \/>\n<meta name=\"twitter:label1\" content=\"Verfasst von\" \/>\n\t<meta name=\"twitter:data1\" content=\"Andreas Brus\" \/>\n\t<meta name=\"twitter:label2\" content=\"Gesch\u00e4tzte Lesezeit\" \/>\n\t<meta name=\"twitter:data2\" content=\"1\u00a0Minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html\"},\"author\":{\"name\":\"Andreas Brus\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#\\\/schema\\\/person\\\/23ac7b0aacd4a4c89b1961e28dd37c0a\"},\"headline\":\"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c\",\"datePublished\":\"2013-10-11T15:36:16+00:00\",\"dateModified\":\"2021-06-25T08:44:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html\"},\"wordCount\":128,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#organization\"},\"articleSection\":[\"TYPO3\",\"IT-Sicherheit\"],\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html\",\"url\":\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html\",\"name\":\"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c - Blog artif T\u00fcbingen\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#website\"},\"datePublished\":\"2013-10-11T15:36:16+00:00\",\"dateModified\":\"2021-06-25T08:44:19+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html#breadcrumb\"},\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/syss_sicherheitsluecke_typo3.html#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Startseite\",\"item\":\"https:\\\/\\\/artif.com\\\/blog\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/artif.com\\\/blog\\\/\",\"name\":\"Blog artif T\u00fcbingen\",\"description\":\"Blog von artif aus T\u00fcbingen: Internetagentur, Webdesign und TYPO3 von den Web Experts f\u00fcr Internet und Intranet aus T\u00fcbingen.\",\"publisher\":{\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/artif.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"de\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#organization\",\"name\":\"artif T\u00fcbingen\",\"url\":\"https:\\\/\\\/artif.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/artif.com\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/logo-artif-cs5_rgb.png\",\"contentUrl\":\"https:\\\/\\\/artif.com\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/logo-artif-cs5_rgb.png\",\"width\":1902,\"height\":528,\"caption\":\"artif T\u00fcbingen\"},\"image\":{\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/pages\\\/TYPO3-Agentur-artif-Gmbh-Co-KG\\\/101490748200\",\"https:\\\/\\\/x.com\\\/artifcom\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/artif.com\\\/blog\\\/#\\\/schema\\\/person\\\/23ac7b0aacd4a4c89b1961e28dd37c0a\",\"name\":\"Andreas Brus\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e1d9a4c933975d228f04533e41539195768e3917e60c27e2697f409c38d90d5f?s=96&d=identicon&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e1d9a4c933975d228f04533e41539195768e3917e60c27e2697f409c38d90d5f?s=96&d=identicon&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e1d9a4c933975d228f04533e41539195768e3917e60c27e2697f409c38d90d5f?s=96&d=identicon&r=g\",\"caption\":\"Andreas Brus\"},\"sameAs\":[\"https:\\\/\\\/artif.com\\\/\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c - Blog artif T\u00fcbingen","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html","og_locale":"de_DE","og_type":"article","og_title":"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c - Blog artif T\u00fcbingen","og_description":"Wie vor kurzem bekannt gegeben wurde, hat die T\u00fcbinger SySS GmbH am 24. Mai 2013 einen Sicherheitsfehler im TYPO3 System entdeckt. Die Sicherheitsl\u00fccke bezieht sich auf den Dateimanager bei dem jegliche tats\u00e4chliche Dateioperation (Hochladen, Anlegen, Umbenennen, Bearbeiten) per AJAX-Aufruf an untergeordnete URLs weitergegeben wird. Die Sicherheitsl\u00fccke welche die Systeme 6.0 und aufsteigend betroffen hat, wurde... TYPO3 IT-Sicherheit Weiterlesen","og_url":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html","og_site_name":"Blog artif T\u00fcbingen","article_publisher":"https:\/\/www.facebook.com\/pages\/TYPO3-Agentur-artif-Gmbh-Co-KG\/101490748200","article_published_time":"2013-10-11T15:36:16+00:00","article_modified_time":"2021-06-25T08:44:19+00:00","og_image":[{"width":512,"height":512,"url":"https:\/\/artif.com\/blog\/wp-content\/uploads\/2021\/05\/artif-logo.png","type":"image\/png"}],"author":"Andreas Brus","twitter_card":"summary_large_image","twitter_creator":"@artifcom","twitter_site":"@artifcom","twitter_misc":{"Verfasst von":"Andreas Brus","Gesch\u00e4tzte Lesezeit":"1\u00a0Minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html#article","isPartOf":{"@id":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html"},"author":{"name":"Andreas Brus","@id":"https:\/\/artif.com\/blog\/#\/schema\/person\/23ac7b0aacd4a4c89b1961e28dd37c0a"},"headline":"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c","datePublished":"2013-10-11T15:36:16+00:00","dateModified":"2021-06-25T08:44:19+00:00","mainEntityOfPage":{"@id":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html"},"wordCount":128,"commentCount":0,"publisher":{"@id":"https:\/\/artif.com\/blog\/#organization"},"articleSection":["TYPO3","IT-Sicherheit"],"inLanguage":"de","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html#respond"]}]},{"@type":"WebPage","@id":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html","url":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html","name":"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c - Blog artif T\u00fcbingen","isPartOf":{"@id":"https:\/\/artif.com\/blog\/#website"},"datePublished":"2013-10-11T15:36:16+00:00","dateModified":"2021-06-25T08:44:19+00:00","breadcrumb":{"@id":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html#breadcrumb"},"inLanguage":"de","potentialAction":[{"@type":"ReadAction","target":["https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/artif.com\/blog\/syss_sicherheitsluecke_typo3.html#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Startseite","item":"https:\/\/artif.com\/blog"},{"@type":"ListItem","position":2,"name":"SySS Newsletter \u201eSySS entdeckt schwere Sicherheitsl\u00fccke in TYPO3\u201c"}]},{"@type":"WebSite","@id":"https:\/\/artif.com\/blog\/#website","url":"https:\/\/artif.com\/blog\/","name":"Blog artif T\u00fcbingen","description":"Blog von artif aus T\u00fcbingen: Internetagentur, Webdesign und TYPO3 von den Web Experts f\u00fcr Internet und Intranet aus T\u00fcbingen.","publisher":{"@id":"https:\/\/artif.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/artif.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"de"},{"@type":"Organization","@id":"https:\/\/artif.com\/blog\/#organization","name":"artif T\u00fcbingen","url":"https:\/\/artif.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/artif.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/artif.com\/blog\/wp-content\/uploads\/2021\/03\/logo-artif-cs5_rgb.png","contentUrl":"https:\/\/artif.com\/blog\/wp-content\/uploads\/2021\/03\/logo-artif-cs5_rgb.png","width":1902,"height":528,"caption":"artif T\u00fcbingen"},"image":{"@id":"https:\/\/artif.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/pages\/TYPO3-Agentur-artif-Gmbh-Co-KG\/101490748200","https:\/\/x.com\/artifcom"]},{"@type":"Person","@id":"https:\/\/artif.com\/blog\/#\/schema\/person\/23ac7b0aacd4a4c89b1961e28dd37c0a","name":"Andreas Brus","image":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/secure.gravatar.com\/avatar\/e1d9a4c933975d228f04533e41539195768e3917e60c27e2697f409c38d90d5f?s=96&d=identicon&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/e1d9a4c933975d228f04533e41539195768e3917e60c27e2697f409c38d90d5f?s=96&d=identicon&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e1d9a4c933975d228f04533e41539195768e3917e60c27e2697f409c38d90d5f?s=96&d=identicon&r=g","caption":"Andreas Brus"},"sameAs":["https:\/\/artif.com\/"]}]}},"publishpress_future_action":{"enabled":false,"date":"2026-04-19 10:44:09","action":"change-status","newStatus":"draft","terms":[],"taxonomy":"category","extraData":[]},"publishpress_future_workflow_manual_trigger":{"enabledWorkflows":[]},"_links":{"self":[{"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/posts\/205","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/comments?post=205"}],"version-history":[{"count":3,"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/posts\/205\/revisions"}],"predecessor-version":[{"id":1945,"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/posts\/205\/revisions\/1945"}],"wp:attachment":[{"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/media?parent=205"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/categories?post=205"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/artif.com\/blog\/wp-json\/wp\/v2\/tags?post=205"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}