TYPO3-20051107-1: A bug has been discovered in the "CHC Forum" (chc_forum) extension where some Javascript expressions are not properly caught when entered in forms. Thus, specially crafted entries may be used to inject malicious code.
TYPO3-20051107-2: A weakness in the form validation of th_mailformplus has been discovered that may be abused to inject additional recipients in mail forms.
This Month in TYPO3: December, 2024 [Issue #20]
Happy New Year to the entire TYPO3 community! As we welcome 2025, let’s take a look back at the key developments in December 2024. This edition covers…