TYPO3 News & Events Hub
What’s New & What’s Coming
Cross-Site Scripting vulnerability in TYPO3 Core
It has been discovered that the frontend plugin of system extension "felogin" is vulnerable to Cross-Site Scripting (XSS).
Read moreCross-Site Scripting vulnerability in TYPO3 Core
It has been discovered that the backend module "file" is vulnerable to Cross-Site Scripting (XSS).
Cross Site Scripting vulnerabilities in TYPO3 core
It has been discovered that TYPO3 core is susceptible to two Cross Site Scripting (XSS) issues. The frontend plugin of system extension "felogin" and the backend module "file" are vulnerable.
TYPO3 4.3 Alpha 1
The TYPO3 Core Team is proud to announce the first alpha release of TYPO3 version 4.3. Get a short overview of the most important changes.
T3CON09 Dallas, TX, April 16-18 2009
Dear Web Professionals and TYPO3 Enthusiasts, We are pleased to announce the first TYPO3 conference in the United States. This is an additional conference adding to the well-known European conference. We hope that this gives the many U.S. based...
TYPO3 Security Bulletin
Several vulnerabilities have been found in the following third party TYPO3 extensions: "advcalendar" (advCalendar), "CMS Poll system" (cms_poll), "eLuna Page Comments" (eluna_pagecomments), "Wir ber uns" [sic] (fsmi_people), "Dictionary"...
TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting.
Security issues in TYPO3 extension phpMyAdmin and several other third party extensions
Security issues have been discovered in the following third party TYPO3 extensions: "phpMyAdmin" (phpmyadmin), "advCalendar" (advcalendar), "CMS Poll system" (cms_poll), "eLuna Page Comments" (eluna_pagecomments), "Wir ber uns" [sic] (fsmi_people),...
T3N Magazine releases three current TYPO3-Articles in English (October 2008)
For the 12th time the T3N Magazine for Open Source and Web 2.0 updated their article database. Three stories from the last issue (No. 12) have recently been translated for your free reading pleasure.
Bug Day coming up this Friday, Oct 31st
If you're an extension developer and never really got around the TYPO3 core, this is your chance to get insight.
Become a certified TYPO3 integrator
After a long preparation phase the certification team finally made it! The first public beta test has successfully taken place during the T3CON 08 in Berlin. Register now and become one of the very first certified "TYPO3 integrator".
A Common Roadmap for TYPO3
After T3CON08 21 developers, most of them member of the TYPO3 core team, met for one week to discuss possible strategies for a smooth migration from version 4 to 5. The outcome is a new joint roadmap, visionary new features for both branches and a...
FLOW3 slides online
Slides from most of the talks and presentations about FLOW3 are now online.
SQL Injection in extension Commerce (commerce)
It has been discovered that the extension Commerce (commerce) is vulnerable to SQL Injection attacks.
TYPO3 Security Bulletin
Several vulnerabilities have been found in the following third party TYPO3 extensions: JobControl (dmmjobcontrol), Econda Plugin (econda), Frontend Users View (feusersview), Mannschaftsliste (kiddog_playerlist), M1 Intern (m1_intern), Simple survey...
Security issues in TYPO3 extension Commerce and several other third party extensions
Security issues have been discovered in the following third party TYPO3 extensions: Commerce (commerce), JobControl (dmmjobcontrol), Econda Plugin (econda), Frontend Users View (feusersview), Mannschaftsliste (kiddog_playerlist), M1 Intern...
T3BOARD09 Registration to start on Monday, Oct. 20th
The registration for next years snowboard tour starts on Monday, the 20th of October 2008.
TYPO3 Security Bulletin
It has been discovered that the extension freeCap CAPTCHA (sr_freecap) is vulnerable to Cross-Site Scripting.
TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting.
Two third party TYPO3 extensions found insecure
The extensions phpMyAdmin (phpmyadmin) and freeCap CAPTCHA (sr_freecap) have been found insecure.