Article - TYPO3 News

The Project

Entering the final stage of the TYPO3 Inc. preparation - we need you!

Alain Veuve

09 March 2016

The TYPO3 Inc. preparation group is coming to the final stage of its work. During the past months we held countless meetings and discussion in order to find out what would be a viable way to start up the TYPO3 Inc.

Discontinuation of the Subversion Service at svn.typo3.org

Steffen Gebert

05 March 2016

Five years after the move of TYPO3 CMS to Git, the Subversion server svn.typo3.org will be shut down on May 1st, 2016.

Developer & Technology

Kicking off TYPO3 v8 Development

Benni Mack

03 March 2016

The TYPO3 core team is officially starting the next development cycle. Sprint releases every 8-10 weeks along the way until TYPO3 8 LTS (Long Term Support) in April 2017 will ensure that new projects can possibly be set up with v8 already. A smooth upgrade path between the sprint releases will be provided.

TYPO3 Extensions

TYPO3-EXT-SA-2016-006: Cross-Site Scripting in extension "Apache Solr for TYPO3" (solr)

Marcus Krause

03 March 2016

It has been discovered that the extension "Apache Solr for TYPO3" (solr) is susceptible to Cross-Site Scripting.

TYPO3 Extensions

TYPO3-EXT-SA-2016-005: Cross-Site Scripting in extension "Extension Kickstarter" (kickstarter)

Marcus Krause

03 March 2016

It has been discovered that the extension "Extension Kickstarter" (kickstarter) is susceptible to Cross-Site Scripting.

TYPO3 Extensions

TYPO3-EXT-SA-2016-004: Multiple vulnerabilities in extension "Fe user statistic" (festat)

Marcus Krause

03 March 2016

It has been discovered that the extension "Fe user statistic" (festat) is susceptible to Cross-Site Scripting, Insecure Unserialize and Information Disclosure.

TYPO3 Extensions

TYPO3-EXT-SA-2016-003: Cross-Site Scripting in extension "Google Sitemap" (enter_new_weeaar_googlesitemap)

Marcus Krause

03 March 2016

It has been discovered that the extension "Google Sitemap" (enter_new_weeaar_googlesitemap) is susceptible to Cross-Site Scripting.

TYPO3 Extensions

TYPO3-EXT-SA-2016-002: Cross-Site Scripting in extension "List frontend users" (listfeusers)

Marcus Krause

03 March 2016

It has been discovered that the extension "List frontend users" (listfeusers) is susceptible to Cross-Site Scripting.

TYPO3 Extensions

TYPO3-EXT-SA-2016-001: Information Disclosure in extension "UTOPIA" (ics_utopia)

Marcus Krause

03 March 2016

It has been discovered that the extension "UTOPIA" (ics_utopia) is susceptible to Information Disclosure.

Showcase & Success

Farewell Carsten

News team

26 February 2016

Thursday, 25th of February 2016, Carsten Bleicker passed away

TYPO3 News & Events Hub

What’s new & what’s comin’

Entering the final stage of the TYPO3 Inc. preparation - we need you!

Discontinuation of the Subversion Service at svn.typo3.org

Kicking off TYPO3 v8 Development

TYPO3-EXT-SA-2016-006: Cross-Site Scripting in extension "Apache Solr for TYPO3" (solr)

TYPO3-EXT-SA-2016-005: Cross-Site Scripting in extension "Extension Kickstarter" (kickstarter)

TYPO3-EXT-SA-2016-004: Multiple vulnerabilities in extension "Fe user statistic" (festat)

TYPO3-EXT-SA-2016-003: Cross-Site Scripting in extension "Google Sitemap" (enter_new_weeaar_googlesitemap)

TYPO3-EXT-SA-2016-002: Cross-Site Scripting in extension "List frontend users" (listfeusers)

TYPO3-EXT-SA-2016-001: Information Disclosure in extension "UTOPIA" (ics_utopia)

Farewell Carsten