Gatedcontent (gatedcontent)

Gatedcontent is lead-capture extension for TYPO3. The extension provides editors with a configurable form element to collect user data. In exchange for personal information like e-mail address, name,…

Show extension details Download ZIP of version 1.0.1 Extension documentation

CSRF in extension "femanager" (femanager)

Release Date: December 17, 2019 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Vulnerability Type: Cross-Site Request Forgery Affected Versions:…

Meet TYPO3 at the Internet Festival in Pisa

On October 9 2014 the 4th Internet Festival will start in Pisa; this is an annual event, which focuses this year on the keyword "raw matter". "Just as the industrial revolution was born out of coal…

New translation server online!

A BETA version of the new TYPO3 translation server, based on Pootle, is now online. Contributing to TYPO3 has never been so easy for non-developers. Don't wait any longer. Join us today! We Are All…

Security Bulletin TYPO3-20080505-1: Multiple vulnerabilities in extension MailformPlus (th_mailformplus)

Please read the entire security bulletin here: Security Bulletin TYPO3-20080505-1: Multiple vulnerabilities in extension MailformPlus (th_mailformplus) We also recommend that you subscribe to the…

Security Bulletin TYPO3-20080416-2: SQL Injections in extensions pmk_rssnewsexport and cm_rdfexport

Please read the entire security bulletin here: Security Bulletin TYPO3-20080416-2: SQL Injections in extensions pmk_rssnewsexport and cm_rdfexport We also recommend that you subscribe to the TYPO3…

Google Summer of Code 2010 Projects

For this years Summer of Code 152 Free and Open Source Software (FOSS) organizations were accepted. The TYPO3 community is proud to be among that list of organizations which reads like the who-is-who…

TYPO3camp Mallorca

This first version of this international TYPO3camp brought together 115 people from various countries to this beautiful island with tropical conditions. Temperatures over the weekend reached 29…

docs.typo3.org Gets New Infrastructure

Here are some insights in the process, the reasons why the infrastructure was changed, and the benefits summary for TYPO3. History Before the change, docs.typo3.org was actually a development system…

SQL Injection vulnerability in extension Multishop (multishop)

Release Date: June 03, 2013 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 2.0.38 and below Vulnerability Type: SQL…

Public Sector Membership

TYPO3 Association Public Sector Memberships For national and regional governments, municipalities, and cities, as well as companies they own TYPO3 Association memberships for public-sector companies and institutions within these areas: Cultural and…

SQL Injection vulnerability in extension CoolURI (cooluri)

Release Date: February 19, 2012 Bulletin Update: November 06, 2014 (added CVE) Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions:…

Vulnerability in TYPO3 Core

Component Type: TYPO3 Core Affected Versions: 4.3.0, 4.3.1 and 4.3.2 (+ development releases of 4.4 branch) Vulnerability Types: Remote Command Execution Overall Severity: Critical Release Date: April…

Cross-Site Scripting vulnerability in extension powermail for TYPO3 (powermail)

Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.6.4 and below Vulnerability Types: Cross-Site Scripting Severity:…

TYPO3 Services (doc_core_services)

Now available at http://docs.typo3.org/typo3cms/Typo3ServicesReference/

Show extension details Download ZIP of version 1.0.2 Extension documentation

Inside TYPO3 (doc_core_inside)

Now available at http://docs.typo3.org/typo3cms/InsideTypo3Reference/

Show extension details Download ZIP of version 4.2.1 Extension documentation

Content Blocks on the Way to the Core

Integrating the Separate Parts of Content Blocks Into the Core An important building block in the procedure is the exchange with the Core team. Based on this exchange, we have been able to encapsulate…

This Month in TYPO3 - September 2018 - Issue #6

This Month in TYPO3 - September 2018 - Issue #6 The September edition is rather brief since everybody is busy preparing for the upcoming release of TYPO3 9 LTS, either by contributing to the TYPO3 core, updating extensions to be compatible with TYPO3…

Multiple vulnerabilities in extension "DRC News Comment" (news_comment)

Release Date: December 18, 2017 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 1.0.7 and below Vulnerability Type:…

Cross Site-Scripting in extension "CAB FAL search" (falsearch)

Release Date: November 07, 2017 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 0.2.0 and below Vulnerability Type:…

Information Disclosure in third party extension "Frontend User registration"

Release Date: April 6, 2009 Component Type: Third party extension. This extension is not a part of a TYPO3 default installation. Affected Versions: 2.5.20 and all versions below Vulnerability Type:…

A thousand+ certified integrators

The TYPO3 Certification Team is proud to announce that we have reached the mark of 1000 TYPO3 Certified Integrators. In fact, at the time of this writing, there are 1032 individuals that have…

CeBIT-Special: Become member, save the registration fee!

If you visit our booth at CeBIT and apply for your membership there, you will save the registration fee. Usually a new member of the TYPO3 Association has to pay a one time registration fee which is…

TYPO3 Communication OKRs Initiative 2022/2023

Open Strategy Partners (OSP) is acting as Scrum master, and the project owner for the initiative is Mathias Bolt Lesniak. In the early months of 2022, the Board members participated in a series of…

SQL Injection in extension "Event management and registration" (sf_event_mgt)

Release Date: April 10, 2017 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 1.8.0 and below Vulnerability Type: SQL…