[SECURITY] Prohibit accessing storage 0 from backend UI 08/23608/2
authorSteffen Ritter <info@rs-websystems.de>
Wed, 4 Sep 2013 11:23:59 +0000 (13:23 +0200)
committerOliver Hader <oliver.hader@typo3.org>
Wed, 4 Sep 2013 11:24:03 +0000 (13:24 +0200)
commitcbed687fbb6dd16ea5363bc97efed970d552f88f
treebe5ff6798439959f1b5a16ec544b56a123f75e2c
parentf48a1c1bf553814b8867a9fd3022a4b8f4db6a64
[SECURITY] Prohibit accessing storage 0 from backend UI

Manually accessing backend entry-points regarding files passing
an identifier with storage 0 may allow unfiltered access for read,
write, rename, create and delete actions.

The user interface must never deal with storage 0. Therefore
implement checks for storage 0 as protection.

Change-Id: Ia387dfac3057760800171163ff91cd9f55cab4b5
Releases: 6.2, 6.1, 6.0
Fixes: #50886
Security-Commit: b813a875ad76aa7860b76602eb1f32dcfc9fadcd
Security-Bulletin: TYPO3-CORE-SA-2013-003
Reviewed-on: https://review.typo3.org/23608
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
typo3/sysext/backend/Classes/Controller/File/CreateFolderController.php
typo3/sysext/backend/Classes/Controller/File/EditFileController.php
typo3/sysext/backend/Classes/Controller/File/FileUploadController.php
typo3/sysext/backend/Classes/Controller/File/RenameFileController.php
typo3/sysext/core/Classes/Utility/File/ExtendedFileUtility.php