Wed. 1st August, 2007
TYPO3-SECURITY-BULLETIN-20070801-1-MULTIPLE-VULNERABILITIES-IN-EXTENSION-VE-GUESTBOOK: TYPO3 Security Bulletin 20070801-1: Multiple vulnerabilities in extension ve_guestbook
Categories:
Security
Created by Lars Houmark
It has been discovered that the extension ve_guestbook is vulnerable to SQL Injection attacks. Also, a Cross Site Scripting issue has been detected.
Please read the entire security bulletin here:
TYPO3 Security Bulletin 20070801-1: Multiple vulnerabilities in extension ve_guestbook
We also recommend that you subscribe to the TYPO3 Announce List , which is a low-traffic list, where only important announces like this one is being brought.