TYPO3-SECURITY-BULLETIN-20070716-1-CROSS-SITE-SCRIPTING-VULNERABILITY-IN-FAQ: TYPO3 Security Bulletin 20070716-1: Cross Site Scripting vulnerability in faq

Categories: Security Created by Lars Houmark
It has been discovered that the extension faq is susceptible to cross site scripting (XSS) attacks, making it possible to execute arbitrary JavaScript.

Please read the entire security bulletin here:

TYPO3 Security Bulletin TYPO3-20070716-1: Cross Site Scripting vulnerability in faq

We also recommend that you subscribe to the TYPO3 Announce List, which is a low-traffic list, where only important announces like this one is being brought.