TYPO3 News & Events Hub
What’s new & what’s comin’
This Is Lina Wolf, the New Documentation Team Co-Lead
Lina Wolf has recently stepped up as the team’s new Co-Lead. She joined the Documentation Team after the Developer Days in 2019, but her first meeting with TYPO3 started much earlier.
Read moreTYPO3 11.5.12 and 10.4.30 maintenance releases published
The versions 11.5.12 and 10.4.30 of the TYPO3 Enterprise Content Management System have just been released.
TYPO3-CORE-SA-2022-005: Insufficient Session Expiration in Admin Tool
It has been discovered that TYPO3 CMS is susceptible to broken access control.
TYPO3-CORE-SA-2022-004: Cross-Site Scripting in Frontend Login Mailer
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-003: Cross-Site Scripting in Form Framework
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-002: Information Disclosure via Exception Handling/Logger
It has been discovered that TYPO3 CMS is susceptible to information disclosure.
TYPO3-CORE-SA-2022-001: Information Disclosure via Export Module
It has been discovered that TYPO3 CMS is susceptible to information disclosure.
TYPO3 11.5.11 and 10.4.29 security releases published
The versions 11.5.11 and 10.4.29 of the TYPO3 Enterprise Content Management System have just been released.
TYPO3-EXT-SA-2022-013: Cross-Site Scripting in extension "AMEOS - TarteAuCitron (GDPR cookie banner and tracking management / French RGPD compatible)" (ameos_tarteaucitron)
It has been discovered that the extension "AMEOS - TarteAuCitron (GDPR cookie banner and tracking management / French RGPD compatible)" (ameos_tarteaucitron) is susceptible to Cross-Site Scripting.
TYPO3-EXT-SA-2022-012: Cross-Site Scripting in extension "Embedding schema.org vocabulary" (schema)
It has been discovered that the extension "Embedding schema.org vocabulary" (schema) is susceptible to Cross-Site Scripting.