Tag: Development
TYPO3-EXT-SA-2023-009: Insecure Direct Object Reference in extension "Content Consent" (content_consent)
It has been discovered that the extension "Content Consent" (content_consent) is susceptible to Insecure Direct Object Reference.
Read moreTYPO3 12.4.9 maintenance release published
The version 12.4.9 of the TYPO3 Enterprise Content Management System has just been released.
A Recap of the First Remote Code Sprint With the Best Practices Team
The focus of the Best Practices Team’s first code sprint was to work on open issues for the Tea extension. For me, it was the first official TYPO3 code sprint that I have ever attended — and it will not be my last.
Shutdown of the Pootle Translation Server
Crowdin has been our default translation server for quite some time. We have now decommissioned the infrastructure that supported the old Pootle translation server — here is how it impacts you.
Automatic TYPO3 Updates Across Several Major Versions With DDEV
With this small tool, automated TYPO3 updates over several versions are no problem. Developers can use this tool to master even complex TYPO3 updates without a weeks-long freeze for the customer. The only requirements: A local DDEV installation and Git.
TYPO3-CORE-SA-2023-007: By-passing Cross-Site Scripting Protection in HTML Sanitizer
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2023-006: Weak Authentication in Session Handling
It has been discovered that TYPO3 CMS is susceptible to weak authentication.
TYPO3-CORE-SA-2023-005: Information Disclosure in Install Tool
It has been discovered that TYPO3 CMS is susceptible to information disclosure.
TYPO3 12.4.8 and 11.5.33 security releases published
The versions 12.4.8 and 11.5.33 of the TYPO3 Enterprise Content Management System have just been released.
TYPO3 12.4.7 and 11.5.32 maintenance releases published
The versions 12.4.7 and 11.5.32 of the TYPO3 Enterprise Content Management System have just been released.