Skip to main navigation Skip to main content Skip to page footer
Newsletter Sign-Up Follow Us

TYPO3 News & Events Hub

What’s New & What’s Coming

  • Community

DAM 1.1.0 has been released

The DAM development team is proud to announce the release of version 1.1.0 of Digital Asset Management (DAM), the bugfix Release after "The Big Sleep".

Read more
  • Security

Security issues in several third party TYPO3 extensions

Security vulnerabilities have been discovered in the following third party TYPO3 extensions: "phpMyAdmin" (phpmyadmin), "DR Wiki - Typo3 Wiki extension" (dr_wiki), "WEC Discussion Forum" (wec_discussion), "Vox populi" (mv_vox_populi), "SB Universal...

TYPO3 Security Bulletin

Several vulnerabilities have been found in the following third party TYPO3 extensions: "Vox populi" (mv_vox_populi), "SB Universal Plugin" (SBuniplug), "Simple File Browser" (simplefilebrowser), "TU-Clausthal ODIN" (tuc_odin), "TU-Clausthal Staff"...

TYPO3 Security Bulletin

It has been discovered that the extension DR Wiki - Typo3 Wiki extension (dr_wiki) is vulnerable to Cross-Site Scripting (XSS).

TYPO3 Security Bulletin

It has been discovered that the extension WEC Discussion Forum (wec_discussion) is vulnerable to Cross-Site Scripting (XSS) and SQL injection.

TYPO3 Security Bulletin

It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to SQL injections via XSRF.

  • Community

TYPO3 Coding Weekend in Karlsruhe

From December 13th-14th 2008 the core and core-related developers Ingmar Schlecht, Sebastian Kurfürst, Oliver Hader, Andreas Wolf and Jochen Rau arranged a TYPO3 Coding Weekend in Karlsruhe/Germany. The session took place in the office of punkt.de -...

  • Community

Podcast about Transition Days published

Do you remember the TYPO3 Transition Days? I promised to publish a podcast featuring some statements by the participants of the meeting and now - after enjoying two weeks of holidays in a warm country - I found the time

  • Security

Update on recent typo3.org issue

Dear user of typo3.org, after a while of (almost) non-stop activity by members of the security team as well as the core team and the folks from punkt.de the front user login on typo3.org has been enabled again. This means that as soon as you have...

  • Development

Sponsoring of Form Project Completed

I am very pleased to announce that the financing of the new FORM sponsored project has been completed. The main supporters of this project were a network of German universities.

  • Security

Important security warning

This is an important security warning. An unauthorized person has gained administrative access to the typo3.org website. The offender had access to website user details including their passwords, and there have been reports of this data being used...

  • Security

Cross Site Scripting vulnerabilities in TYPO3 core

It has been discovered that TYPO3 core is susceptible to two Cross Site Scripting (XSS) issues. The frontend plugin of system extension "felogin" and the backend module "file" are vulnerable.

  • Development

TYPO3 4.3 Alpha 1

The TYPO3 Core Team is proud to announce the first alpha release of TYPO3 version 4.3. Get a short overview of the most important changes.

  • Community

T3CON09 Dallas, TX, April 16-18 2009

Dear Web Professionals and TYPO3 Enthusiasts, We are pleased to announce the first TYPO3 conference in the United States. This is an additional conference adding to the well-known European conference. We hope that this gives the many U.S. based...

TYPO3 Security Bulletin

Several vulnerabilities have been found in the following third party TYPO3 extensions: "advcalendar" (advCalendar), "CMS Poll system" (cms_poll), "eLuna Page Comments" (eluna_pagecomments), "Wir ber uns" [sic] (fsmi_people), "Dictionary"...

TYPO3 Security Bulletin

It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting.