TYPO3 9.5.14 and 8.7.31 maintenance releases published
We are announcing the release of the following…
21 April 2020: TYPO3 v10 LTS Release and Party
The General Assembly is only the second reason why…
TYPO3-EXT-SA-2019-023: CSRF in extension "femanager" (femanager)
- Release Date: December 17, 2019
- Component Type:…
TYPO3-EXT-SA-2019-022: Privilege Escalation in extension "femanager direct mail subscription" (femanager_dmail_subscribe)
- Release Date: December 17, 2019
- Component Type:…
TYPO3-EXT-SA-2019-021: Cross Site Scripting in extension "File List" (file_list)
- Release Date: December 17, 2019
- Component Type:…
TYPO3-EXT-SA-2019-020: CSRF in extension "Change password for frontend users" (fe_change_pwd)
- Release Date: December 17, 2019
- Component Type:…
TYPO3-EXT-SA-2019-019: Multiple vulnerabilities in extension "MKSamlAuth" (mksamlauth)
- Release Date: December 17, 2019
- Component Type:…
TYPO3 10.2.2, 9.5.13 and 8.7.30 security releases published
The TYPO3 Community announces the versions 10.2.2,…
TYPO3-CORE-SA-2019-026: Insecure Deserialization in Query Generator & Query View
- Component Type: TYPO3 CMS
- Subcomponent: Query…
TYPO3-CORE-SA-2019-025: SQL Injection in low-level Query Generator
- Component Type: TYPO3 CMS
- Subcomponent: Query…
TYPO3-CORE-SA-2019-024: Directory Traversal on ZIP extraction
- Component Type: TYPO3 CMS
- Subcomponent:…
TYPO3-CORE-SA-2019-023: Cross-Site Scripting in Filelist Module
- Component Type: TYPO3 CMS
- Subcomponent:…
TYPO3-CORE-SA-2019-022: Cross-Site Scripting in Link Handling
- Component Type: TYPO3 CMS
- Subcomponent: Link…
TYPO3-CORE-SA-2019-021: Cross-Site Scripting in Form Framework validation handling
- Component Type: TYPO3 CMS
- Subcomponent: Form…
TYPO3-PSA-2019-011: Possible Insecure Deserialization in Extbase Request Handling
- Component Type: TYPO3 CMS
- Subcomponent: Extbase…
TYPO3-PSA-2019-010: Cross-Site Scripting Vulnerabilities in File Upload Handling
It has been discovered that TYPO3 is susceptible…
