TYPO3 News & Events Hub
What’s new & what’s comin’
May diary of the TYPO3 Association
In the era of keywords, if we would have to choose one for the month of May at the TYPO3 Association we would go for “change”.
Read moreAnnouncing TYPO3 CMS 7.3 - More Stability, More Control
The TYPO3 community is pleased to announce the latest version of TYPO3 CMS which serves as another intermediate step towards the final TYPO3 CMS 7 LTS to be released in fall 2015.
Register now for a 2015 TYPO3 Agency Meetup near you!
TYPO3-EXT-SA-2015-013: Arbitrary Code Execution in extension Job Fair (jobfair)
It has been discovered that the extension "Job Fair" (jobfair) is susceptible to Arbitrary Code Execution
TYPO3-EXT-SA-2015-009: SQL Injection vulnerability in extension Store Locator (locator)
It has been discovered that the extension "Store Locator" (locator) is susceptible to SQL Injection
TYPO3-EXT-SA-2015-010: SQL Injection vulnerability in extension Smoelenboek (ncgov_smoelenboek)
It has been discovered that the extension "Smoelenboek" (ncgov_smoelenboek) is susceptible to SQL Injection
TYPO3-EXT-SA-2015-011: SQL Injection vulnerability in extension Developer Log (devlog)
It has been discovered that the extension "Developer Log" (devlog) is susceptible to SQL Injection
TYPO3-EXT-SA-2015-012: SQL Injection vulnerability in extension FAQ - Frequently Asked Questions (js_faq)
It has been discovered that the extension "FAQ - Frequently Asked Questions" (js_faq) is susceptible to SQL Injection
TYPO3-EXT-SA-2015-007: Cross-Site Scripting in extension BE User Log (beko_beuserlog)
It has been discovered that the extension "BE User Log" (beko_beuserlog) is susceptible to Cross-Site Scripting
TYPO3-EXT-SA-2015-006: Arbitrary Code Execution in extension Frontend User Upload (feupload)
It has been discovered that the extension "Frontend User Upload" (feupload) is susceptible to Arbitrary Code Execution