Search

Cross-Site Scripting in form component

Component Type: TYPO3 CMS Release Date: February 16, 2016 Vulnerable subcomponent: form component Vulnerability Type: Cross-Site Scripting Affected Versions: Versions 6.2.0 to 6.2.17 Severity: Low…

Published: 16th February 2016 by Helmut Hummel
This Week in TYPO3 (2016, Week 6)

Week ending Sunday, February 14, 2016 How Documentation Professionalises TYPO3 The TYPO3 project was always amazing. But especially with all the changes started in 2015 we see more retention. There is…

Published: 21st February 2016 by ben van 't ende
XML External Entity (XXE) Processing in TYPO3 Core

Component Type: TYPO3 CMS Release Date: February 23, 2016 Vulnerable subcomponent: TYPO3 CMS Vulnerability Type: XML External Entity Processing Affected Versions: Versions 6.2.0 to 6.2.18 and 7.6.0 to…

Published: 23rd February 2016 by Nicole Cordes
TYPO3 CMS 6.2.19 and 7.6.4 released

We are announcing the release of the following TYPO3 CMS updates: TYPO3 CMS 6.2.19 LTS TYPO3 CMS 7.6.4 LTS Both versions are maintenance releases and contain bug and security fixes. Find more details…

Published: 23rd February 2016 by Oliver Hader
Cross-Site Scripting in TYPO3 component Backend

Component Type: TYPO3 CMS Release Date: February 23, 2016 Vulnerable subcomponent: Backend Vulnerability Type: Cross-Site Scripting Affected Versions: Versions 6.2.0 to 6.2.18 Severity: Low Suggested…

Published: 23rd February 2016 by Nicole Cordes
Cross-Site Scripting in TYPO3 component CSS styled content

Component Type: TYPO3 CMS Release Date: February 23, 2016 Vulnerable subcomponent: CSS styled content Vulnerability Type: Cross-Site Scripting Affected Versions: Versions 6.2.0 to 6.2.18 and 7.6.0 to…

Published: 23rd February 2016 by Nicole Cordes
Denial of Service attack possibility in TYPO3 component Indexed Search

Component Type: TYPO3 CMS Release Date: February 23, 2016 Vulnerable subcomponent: Indexed Search Vulnerability Type: Denial of Service attack Affected Versions: Versions 6.2.0 to 6.2.18 and 7.6.0 to…

Published: 23rd February 2016 by Nicole Cordes
Farewell Carsten

I met Carsten on the first day of my apprenticeship and I wouldn’t have thought we would become close friends some day. Some month later he left the company and started his life as a TYPO3 freelancer.…

Published: 26th February 2016 by Alexander Schnitzler
Information Disclosure in extension "UTOPIA" (ics_utopia)

Release Date: March 03, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 1.0.1 and below Vulnerability Type:…

Published: 3rd March 2016 by Nicole Cordes
Cross-Site Scripting in extension "List frontend users" (listfeusers)

Release Date: March 03, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 0.9.9 and below Vulnerability Type:…

Published: 3rd March 2016 by Nicole Cordes
Cross-Site Scripting in extension "Google Sitemap" (enter_new_weeaar_googlesitemap)

Release Date: March 03, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 1.0.0 and below Vulnerability Type:…

Published: 3rd March 2016 by Nicole Cordes
Multiple vulnerabilities in extension "Fe user statistic" (festat)

Release Date: March 03, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 0.3.2 and below Vulnerability Type:…

Published: 3rd March 2016 by Nicole Cordes
Cross-Site Scripting in extension "Extension Kickstarter" (kickstarter)

Release Date: March 03, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 0.5.3 and below Vulnerability Type:…

Published: 3rd March 2016 by Nicole Cordes
Cross-Site Scripting in extension "Apache Solr for TYPO3" (solr)

Release Date: March 03, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 2.8.3 and below, 3.0.0 to 3.0.1…

Published: 3rd March 2016 by Nicole Cordes
Kicking off TYPO3 v8 Development

The main focus of the v8 development is to make the lives of TYPO3 users easier, you can expect some fancy features for editing content directly inside the website and the TYPO3 Backend. The main area…

Published: 3rd March 2016 by Benni Mack
Discontinuation of the Subversion Service at svn.typo3.org

Since TYPO3 changed the version control system from Subversion to Git and Gerrit back in March 2011 , it is now time to discontinue the SVN support provided by the TYPO3 infrastructure. The Subversion…

Published: 5th March 2016 by Steffen Gebert
Entering the final stage of the TYPO3 Inc. preparation - we need you!

As a result we have a first sort of beta candidate for the business plan. This final stage is to include all of your feedback in the best possible way. Therefor we will be pursuing two things:…

Published: 9th March 2016 by Alain Veuve
Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)

Release Date: March 10, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: 5.1.4 and below Vulnerability Type: Unsafe…

Published: 10th March 2016 by Nicole Cordes
SQL Injection in extension "Another simple gallery" (chgallery)

Release Date: March 10, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 2.5.3 and below Vulnerability Type: SQL…

Published: 10th March 2016 by Nicole Cordes
Report on codesprint Karlsruhe 3.3-6.3.16

Some TYPO3 Core Developers and a whole bunch of interested contributors met for four days in Karlsruhe at Flagbit to pave the path for the first release of TYPO3 v8. In total, 21 people managed to…

Published: 13th March 2016 by Anja Leichsenring
Codesprint: Waalwijk and Venlo Camp make for a great week in april

Our dutch friends are good for an outstanding contributing experience in April: they offer a sprint- and camp combination. MaxServ will host the TYPO3 codesprint 18.4 - 21.4 in Waalwijk, where the…

Published: 13th March 2016 by Anja Leichsenring
This Week in TYPO3 (2016, week 9)

Week ending March 6, 2016 International TYPO3camps Traditionally the TYPO3 community organises TYPO3camps in Germany quite a lot. The main language carried in these camps is German. Since a few years…

Published: 17th March 2016 by ben van 't ende
TYPO3 v8.0 - Start Your Engines

... The core team is proud to announce this first release as planned , even if CMS 7 LTS from November 2015 wasn’t too long ago. While the team is actively supporting 7 LTS with bug fixes to zap those…

Published: 22nd March 2016 by TYPO3 CMS Core Team
TYPO3 Inc. Draft Business Plan - Public feedback needed!

I just come from hosting a webinar regarding the TYPO3 Inc. plans that are up for voting on the GA. Mathias Schreiber and myself presented the core business model, organization as well as financial…

Published: 23rd March 2016 by Alain Veuve
Multiple vulnerabilities in extension "Ajax mail subscription" (ods_ajaxmailsubscription)

Release Date: March 24, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 1.4.4 and below Vulnerability Type:…

Published: 24th March 2016 by Nicole Cordes

«
‹
....
152
153
154
155
156
157
158
159
160
161
....
›
»

Cross-Site Scripting in form component

This Week in TYPO3 (2016, Week 6)

XML External Entity (XXE) Processing in TYPO3 Core

TYPO3 CMS 6.2.19 and 7.6.4 released

Cross-Site Scripting in TYPO3 component Backend

Cross-Site Scripting in TYPO3 component CSS styled content

Denial of Service attack possibility in TYPO3 component Indexed Search

Farewell Carsten

Information Disclosure in extension "UTOPIA" (ics_utopia)

Cross-Site Scripting in extension "List frontend users" (listfeusers)

Cross-Site Scripting in extension "Google Sitemap" (enter_new_weeaar_googlesitemap)

Multiple vulnerabilities in extension "Fe user statistic" (festat)

Cross-Site Scripting in extension "Extension Kickstarter" (kickstarter)

Cross-Site Scripting in extension "Apache Solr for TYPO3" (solr)

Kicking off TYPO3 v8 Development

Discontinuation of the Subversion Service at svn.typo3.org

Entering the final stage of the TYPO3 Inc. preparation - we need you!

Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)

SQL Injection in extension "Another simple gallery" (chgallery)

Report on codesprint Karlsruhe 3.3-6.3.16

Codesprint: Waalwijk and Venlo Camp make for a great week in april

This Week in TYPO3 (2016, week 9)

TYPO3 v8.0 - Start Your Engines

TYPO3 Inc. Draft Business Plan - Public feedback needed!

Multiple vulnerabilities in extension "Ajax mail subscription" (ods_ajaxmailsubscription)

Information

Downloads

Community

Popular links

Professional Content Management

Inspire people to share

A Community Effort

Do you have a question?

Information

Downloads

Community

Popular links