Security Advisories

All Advisories

Subscribe to our Security Advisories Mailing List and receive Security Bulletins via E-Mail

Thu. 7th June, 2012
TYPO3-EXT-SA-2012-007: SQL Injection vulnerability in extension Basic SEO Features (seo_basics)

Advisory type: TYPO3 Extensions
Created by Markus Bucher

It has been discovered that the extension "Basic SEO Features" (seo_basics) is vulnerable to SQL Injection.
Read more
Tue. 17th April, 2012
TYPO3-CORE-SA-2012-002: Cross-Site Scripting Vulnerability in TYPO3 Core

Categories: TYPO3 CMS

Advisory type: TYPO3 CMS
Created by Helmut Hummel

It has been discovered that TYPO3 Core is vulnerable to Cross-Site Scripting.
Read more
Wed. 28th March, 2012
SECURITY-ISSUES-FOUND-IN-TYPO3-CORE-1: Security issues found in TYPO3 core

Categories: Security

Advisory type: Security Advisories
Created by Helmut Hummel

It has been discovered that the TYPO3 Core is vulnerable to Cross-Site Scripting, Insecure Unserialize and Information Disclosure.

Please read the…
Read more
Wed. 28th March, 2012
TYPO3-EXT-SA-2012-006: Cross-Site Scripting vulnerability in extension Basic SEO Features (seo_basics)

Advisory type: TYPO3 Extensions
Created by Markus Bucher

It has been discovered that the extension "Basic SEO Features" (seo_basics) is vulnerable to Cross-Site Scripting
Read more
Wed. 28th March, 2012
TYPO3-EXT-SA-2012-005: Several vulnerabilities in third party extensions

Advisory type: TYPO3 Extensions
Created by Marcus Krause

Several vulnerabilities have been found in the following third-party TYPO3 extensions: fe_whois, cag_tables, additional_reports, general_data_display,…
Read more
Wed. 28th March, 2012
TYPO3-EXT-SA-2012-004: Cross-Site Scripting vulnerability in extension powermail for TYPO3 (powermail)

Advisory type: TYPO3 Extensions
Created by Markus Bucher

It has been discovered that the extension "powermail" (powermail) is vulnerable to Cross-Site Scripting
Read more
Wed. 28th March, 2012
TYPO3-CORE-SA-2012-001: Several Vulnerabilities in TYPO3 Core

Categories: TYPO3 CMS

Advisory type: TYPO3 CMS
Created by Helmut Hummel

It has been discovered that TYPO3 Core is vulnerable to Cross-Site Scripting, Information Disclosure, Insecure Unserialize
Read more
Thu. 23rd February, 2012
SECURITY-ISSUES-IN-SEVERAL-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-FRONTEND-USER-REGISTRATION-SR-FEUSER-REGISTER: Security issues in several third party TYPO3 extensions including "Frontend User Registration" (sr_feuser_register)

Categories: Security

Advisory type: Security Advisories
Created by Marcus Krause

Security vulnerabilities have been discovered in the third party TYPO3 extensions including:

sr_feuser_register

tkcropthumbs, t3extplorer,…
Read more
Thu. 23rd February, 2012
TYPO3-EXT-SA-2012-003: Several vulnerabilities in third party extensions

Advisory type: TYPO3 Extensions
Created by Helmut Hummel

Several vulnerabilities have been found in the following third-party TYPO3 extensions: tkcropthumbs, t3extplorer, tc_beuser, an_predigten, solr,…
Read more
Thu. 23rd February, 2012
TYPO3-EXT-SA-2012-002: Information disclosure vulnerabilities in extension "Front End User Registration" (sr_feuser_register)

Advisory type: TYPO3 Extensions
Created by Franz G. Jahn

It has been discovered that the extension "Front End User Registration" (sr_feuser_register) is vulnerable to information disclosure
Read more

Security Advisories

TYPO3-EXT-SA-2012-007: SQL Injection vulnerability in extension Basic SEO Features (seo_basics)

TYPO3-CORE-SA-2012-002: Cross-Site Scripting Vulnerability in TYPO3 Core

SECURITY-ISSUES-FOUND-IN-TYPO3-CORE-1: Security issues found in TYPO3 core

TYPO3-EXT-SA-2012-006: Cross-Site Scripting vulnerability in extension Basic SEO Features (seo_basics)

TYPO3-EXT-SA-2012-005: Several vulnerabilities in third party extensions

TYPO3-EXT-SA-2012-004: Cross-Site Scripting vulnerability in extension powermail for TYPO3 (powermail)

TYPO3-CORE-SA-2012-001: Several Vulnerabilities in TYPO3 Core

SECURITY-ISSUES-IN-SEVERAL-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-FRONTEND-USER-REGISTRATION-SR-FEUSER-REGISTER: Security issues in several third party TYPO3 extensions including "Frontend User Registration" (sr_feuser_register)

Security vulnerabilities have been discovered in the third party TYPO3 extensions including:

TYPO3-EXT-SA-2012-003: Several vulnerabilities in third party extensions

TYPO3-EXT-SA-2012-002: Information disclosure vulnerabilities in extension "Front End User Registration" (sr_feuser_register)

Information

Downloads

Community

Popular links

Professional Content Management

Inspire people to share

A Community Effort

Do you have a question?

Security Advisories

Security vulnerabilities have been discovered in the third party TYPO3 extensions including:

Information

Downloads

Community

Popular links