[SECURITY] Prohibit accessing storage 0 from backend UI 06/23606/2
authorSteffen Ritter <info@rs-websystems.de>
Wed, 4 Sep 2013 11:23:44 +0000 (13:23 +0200)
committerOliver Hader <oliver.hader@typo3.org>
Wed, 4 Sep 2013 11:23:48 +0000 (13:23 +0200)
commit91c3c4c3ccb394cfb9b7052eaf18b99b7ae9fdad
tree1f677aded1e6e8f519e506acc3365bb584132244
parent6592233f0b46b127f0b4a3b120b4950329d288b1
[SECURITY] Prohibit accessing storage 0 from backend UI

Manually accessing backend entry-points regarding files passing
an identifier with storage 0 may allow unfiltered access for read,
write, rename, create and delete actions.

The user interface must never deal with storage 0. Therefore
implement checks for storage 0 as protection.

Change-Id: I97a33aca451719c0d6d4ce3652a31a867a700438
Releases: 6.2, 6.1, 6.0
Fixes: #50886
Security-Commit: b813a875ad76aa7860b76602eb1f32dcfc9fadcd
Security-Bulletin: TYPO3-CORE-SA-2013-003
Reviewed-on: https://review.typo3.org/23606
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
typo3/sysext/backend/Classes/Controller/File/CreateFolderController.php
typo3/sysext/backend/Classes/Controller/File/EditFileController.php
typo3/sysext/backend/Classes/Controller/File/FileUploadController.php
typo3/sysext/backend/Classes/Controller/File/RenameFileController.php
typo3/sysext/core/Classes/Utility/File/ExtendedFileUtility.php