Security Advisories
All Advisories
TYPO3-20080924-1: TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting.
TWO-THIRD-PARTY-TYPO3-EXTENSIONS-FOUND-INSECURE: Two third party TYPO3 extensions found insecure
The extensions phpMyAdmin (phpmyadmin) and freeCap CAPTCHA (sr_freecap) have been found insecure.
TYPO3-20080919-1: TYPO3 Security Bulletin
Several vulnerabilities have been found in TYPO3 third party extensions.
SECURITY-BULLETIN-TYPO3-20080919-1-MULTIPLE-THIRD-PARTY-EXTENSIONS-FOUND-INSECURE: Security Bulletin TYPO3-20080919-1: Multiple third party extensions found insecure
A total of 11 third party extensions have been found insecure. Please follow the links in this news item, in order to see which extensions have has…
SECURITY-BULLETIN-TYPO3-20080916-1-CODE-EXECUTION-VULNERABILITY-IN-EXTENSION-PHPMYADMIN-1: Security Bulletin TYPO3-20080916-1: Code execution vulnerability in extension phpMyAdmin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is open for code execution.
TYPO3-20080916-1: TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Code Execution.
TYPO3-20080701-4: Multiple vulnerabilities in extension WEC Discussion Forum (wec_discussion)
It has been discovered that the extension WEC Discussion Forum (wec_discussion) is open to multiple security issues.
TYPO3-20080701-3: Multiple vulnerabilities in extension Send-A-Card (sr_sendcard)
It has been discovered that the extension Send-A-Card (sr_sendcard) is open to multiple security issues.
TYPO3-20080701-2: Cross Site Scripting vulnerability in extension phpmyadmin
It has been discovered that the extension phpmyadmin is susceptible to Cross Site Scripting (XSS) attacks.
TYPO3-20080701-1: TYPO3 Security Bulletin
Several vulnerabilities have been found in TYPO3 third party extensions.
MULTIPLE-SECURITY-ISSUES-IN-THIRD-PARTY-TYPO3-EXTENSIONS: Multiple security issues in third party TYPO3 extensions
A total of 15 third party extensions has been found insecure. Please follow the links in this news item, in order to see which extensions have has…
TYPO3-20080619-1: TYPO3 Security Bulletin
Several vulnerabilities have been found in TYPO3 third party extensions.
SECURITY-BULLETIN-TYPO3-20080619-1-SEVERAL-VULNERABILITIES-HAVE-BEEN-FOUND-IN-TYPO3-THIRD-PARTY-EXTENSIONS: Security Bulletin TYPO3-20080619-1: Several vulnerabilities have been found in TYPO3 third party extensions
Several vulnerabilities have been found in TYPO3 third party extensions.
SECURITY-BULLETIN-TYPO3-20080611-1-MULTIPLE-VULNERABILITIES-IN-TYPO3-CORE: Security Bulletin TYPO3-20080611-1: Multiple vulnerabilities in TYPO3 Core
It has been discovered that the default value of the TYPO3 configuration variable fileDenyPattern allows arbitrary code execution on Apache web…
TYPO3-20080611-1: Multiple vulnerabilities in TYPO3 Core
It has been discovered that the default value of the TYPO3 configuration variable fileDenyPattern allows arbitrary code execution on Apache web…
TYPO3-20080527-2: SQL Injection in extension "Library for Frontend plugins" (sg_zfelib)
It has been discovered that the extension "Library for Frontend plugins" (sg_zfelib) is susceptible to SQL Injections.
SECURITY-BULLETIN-TYPO3-20080527-2-SQL-INJECTION-IN-EXTENSION-LIBRARY-FOR-FRONTEND-PLUGINS-SG-ZFELIB: Security Bulletin TYPO3-20080527-2: SQL Injection in extension "Library for Frontend plugins" (sg_zfelib)
It has been discovered that the extension "Library for Frontend plugins" (sg_zfelib) is susceptible to SQL Injections.
SECURITY-BULLETIN-TYPO3-20080527-1-CROSS-SITE-SCRIPTING-VULNERABILITY-IN-EXTENSION-KJ-IMAGE-LIGHTBOX-V2-KJ-IMAGELIGHTBOX2: Security Bulletin TYPO3-20080527-1: Cross Site Scripting vulnerability in extension "KJ: Image Lightbox v2" (kj_imagelightbox2)
It has been discovered that the extension "KJ: Image Lightbox v2" (kj_imagelightbox2) is susceptible to Cross Site Scripting (XSS) attacks.
TYPO3-20080527-1: Cross Site Scripting vulnerability in extension "KJ: Image Lightbox v2" (kj_imagelightbox2)
It has been discovered that the extension "KJ: Image Lightbox v2" (kj_imagelightbox2) is susceptible to Cross Site Scripting (XSS) attacks.
TYPO3-20080515-1: Multiple vulnerabilities in extension Frontend User Registration (sr_feuser_register)
It has been discovered that the extension Frontend User Registration (sr_feuser_register) is susceptible to Cross Site Scripting (XSS) attacks and…