Multiple security issues found in TYPO3 core

Categories: Security Created by Helmut Hummel
It has been discovered that TYPO3 Core is vulnerable to Cross-Site Scripting (XSS), Open Redirection, SQL Injection, Broken Authentication and Session Management, Insecure Randomness, Information Disclosure and Arbitrary Code Execution.

Please read this advisory for a description and solutions of all the above mentioned issues:

TYPO3 Security Bulletin TYPO3-SA-2010-12: Multiple vulnerabilities in TYPO3 Core

We also recommend that you subscribe to the TYPO3 Announce List to receive all future Security Bulletins and other important TYPO3 news.