php · typo3/cms-coreAtenção
typo3/cms-core: Backend users could move records without edit permissions on source page
Backend users could move records to a different page without edit permissions on the source page.
O que mudou
Backend users could move records to a different page without edit permissions on the source page. Fixed in TYPO3 versions 13.4.31 LTS and 14.3.3 LTS.
Quem isso afeta
All TYPO3 installations with backend users who have move permissions but not edit permissions on source pages.
O que fazer hoje
Atualize para TYPO3 13.4.31 LTS ou 14.3.3 LTS para corrigir a vulnerabilidade.
A esteira
Coletado→
Auditado→
Redigido→
Publicado