Article - TYPO3 News

Developer & Technology
TYPO3 Extensions

TYPO3-EXT-SA-2026-003: Vulnerability in bundled package in extension "Amazon Web Services (AWS) Toolbox" (aws_tools)

Torben Hansen

20 January 2026

It has been discovered that the extension "Amazon Web Services (AWS) Toolbox" (aws_tools) bundles a vulnerable version of “aws/aws-sdk-php“ which is susceptible to use of a Broken or Risky Cryptographic Algorithm.

TYPO3-EXT-SA-2026-002: Vulnerability in bundled package in extension "AWS SDK for PHP" (aws_sdk_php)

Torben Hansen

20 January 2026

It has been discovered that the extension "AWS SDK for PHP" (aws_sdk_php) bundles a vulnerable version of “aws/aws-sdk-php“ which is susceptible to use of a Broken or Risky Cryptographic Algorithm.

Developer & Technology
TYPO3 Extensions

TYPO3-EXT-SA-2026-001: Insecure Deserialization in extension "Mailqueue" (mailqueue)

Torben Hansen

20 January 2026

It has been discovered that the extension "Mailqueue" (mailqueue) is vulnerable to insecure deserialization.

Product Updates & Roadmap

TYPO3 10.4.56 and 11.5.50 ELTS Released

Andreas Kienast

20 January 2026

Still sticking to an older version of TYPO3? Today, 10.4.56 and 11.5.50 have been released. Staying on top of maintenance updates should be a top priority - Gain peace of mind by opting for one of TYPO3 GmbH’s Extended Support offers!

Product Updates & Roadmap

TYPO3 13.4.24 and 12.4.42 maintenance releases published

Oliver Hader
Oliver Hader

20 January 2026

The versions 13.4.24 and 12.4.42 of the TYPO3 Enterprise Content Management System have just been released.

Developer & Technology

AI Integration in TYPO3 Via MCP: The End of Backend Fumbling

Alexander Bernhardt

15 January 2026

Content management meets artificial intelligence — and takes a quantum leap. With the Model Context Protocol (MCP) extension for TYPO3, editors control their content directly from ChatGPT & Co. No more copy-paste, no more backend hopping. Simply write, edit, publish — all in one tool.

Product Updates & Roadmap

TYPO3 14.0.2, 13.4.23 and 12.4.41 security releases published

Oliver Hader
Oliver Hader

13 January 2026

The versions 14.0.2, 13.4.23 and 12.4.41 of the TYPO3 Enterprise Content Management System have just been released.

Product Updates & Roadmap

TYPO3 10.4.55 and 11.5.49 ELTS Released

Andreas Kienast

13 January 2026

Still sticking to an older version of TYPO3? Today, 10.4.55 and 11.5.49 have been released. Staying on top of maintenance updates should be a top priority - Gain peace of mind by opting for one of TYPO3 GmbH’s Extended Support offers!

Developer & Technology
Product Updates & Roadmap
TYPO3 CMS

TYPO3-CORE-SA-2026-004: Insecure Deserialization via Mailer File Spool

Oliver Hader

13 January 2026

It has been discovered that TYPO3 CMS is vulnerable to insecure deserialization.

Developer & Technology
Product Updates & Roadmap
TYPO3 CMS

TYPO3-CORE-SA-2026-003: Broken Access Control in Recycler Module

Oliver Hader

13 January 2026

It has been discovered that TYPO3 CMS is susceptible to broken access control.

TYPO3 News & Events Hub

What’s new & what’s comin’

TYPO3-EXT-SA-2026-003: Vulnerability in bundled package in extension "Amazon Web Services (AWS) Toolbox" (aws_tools)

TYPO3-EXT-SA-2026-002: Vulnerability in bundled package in extension "AWS SDK for PHP" (aws_sdk_php)

TYPO3-EXT-SA-2026-001: Insecure Deserialization in extension "Mailqueue" (mailqueue)

TYPO3 10.4.56 and 11.5.50 ELTS Released

TYPO3 13.4.24 and 12.4.42 maintenance releases published

AI Integration in TYPO3 Via MCP: The End of Backend Fumbling

TYPO3 14.0.2, 13.4.23 and 12.4.41 security releases published

TYPO3 10.4.55 and 11.5.49 ELTS Released

TYPO3-CORE-SA-2026-004: Insecure Deserialization via Mailer File Spool

TYPO3-CORE-SA-2026-003: Broken Access Control in Recycler Module