Tag: Security
Maintaining the “health” of your website is crucial and knowing that it is running securely is the most important question of all. Business websites need to be monitored, extended and updated on a regular basis. If you’re still running your website on an outdated TYPO3 version, gain peace of mind by opting for TYPO3 GmbH’s ELTS offer.
SECURITY-ISSUES-IN-SEVERAL-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-MM-FORUM-MM-FORUM: Security issues in several third party TYPO3 extensions including "mm_forum" (mm_forum)
A security vulnerabilities has been discovered in the third party TYPO3 extensions including mm_forum, brainstorming, ch_lightem, chsellector, educator, mk_wastebasket, mydashboard, nf_cleandb, pd_diocesedatabase, reports_logview, sav_filter_abc, sav_filter_selectors, sav_filter_months, sk_bookreview, sk_simplegallery, t3quixplorer, t3sec_saltedpw, taskcenter_recent, tgm_newsletter, tmsw_cleandb, travelmate, yatse
Read moreSECURITY-ISSUE-IN-THIRD-PARTY-TYPO3-EXTENSION-CALENDAR-BASE-CAL: Security issue in third party TYPO3 extension "Calendar Base" (cal)
A security vulnerabilitiy has been discovered in the third party TYPO3 extension "Calendar Base".
SECURITY-ISSUES-FOUND-IN-TYPO3-CORE: Security issues found in TYPO3 core
It has been discovered that TYPO3 Core is vulnerable to Cross-Site Scripting, Authentication Bypass for frontend users and Information Disclosure.
SECURITY-ISSUES-IN-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-T3BLOG: Security issues in third party TYPO3 extensions including t3blog
Security vulnerabilities have been discovered in third party TYPO3 extensions t3blog, eventmanagement, game_articledb, ml_career, ml_surprisecalendar, searchajaxgoogle and spr_downloadmanager
SECURITY-ISSUES-IN-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-T3BLOG-COPY-1: Security issues in third party TYPO3 extensions including t3blog (copy 1)
Security vulnerabilities have been discovered in third party TYPO3 extensions t3blog, eventmanagement, game_articledb, ml_career, ml_surprisecalendar, searchajaxgoogle and spr_downloadmanager
SECURITY-ISSUES-IN-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-T3BLOG-COPY-2: Security issues in third party TYPO3 extensions including t3blog (copy 2)
Security vulnerabilities have been discovered in third party TYPO3 extensions t3blog, eventmanagement, game_articledb, ml_career, ml_surprisecalendar, searchajaxgoogle and spr_downloadmanager
SECURITY-ISSUE-FOUND-IN-TYPO3-CORE: Security issue found in TYPO3 core
It has been discovered that using the openid system extension in TYPO3 4.3.0 can lead to an authentication bypass under certain circumstances.
SECURITY-ISSUES-IN-SEVERAL-THIRD-PARTY-TYPO3-EXTENSIONS-1: Security issues in several third party TYPO3 extensions
Security vulnerabilities have been discovered in following third party TYPO3 extensions: MK-AnydropdownMenu (mk_anydropdownmenu), Photo Book (goof_fotoboek), SB Folderdownload (sb_folderdownload), Developer log (devlog), KJ: Imagelightbox (kj_imagelightbox2), Unit Converter (cs2_unitconv), powermail (powermail), TV21 Talkshow (tv21_talkshow), Helpdesk (mg_help), Vote rank for news (vote_for_tt_news), kiddog_mysqldumper (kiddog_mysqldumper), tt_news Mail alert (dl3_tt_news_alerts), TT_Products editor (ttpedit), User Links (vm19_userlinks), MJS Event Pro (mjseventpro), Googlemaps fr tt_news (jf_easymaps), BB Simple Jobs (bb_simplejobs), Reports for Job (job_reports), Clan Users List (pb_clanlist), Customer Reference List (ref_list), zak_store_management (zak_store_management), Reports Logfile View (reports_logview), Majordomo (majordomo), Tip many friends (mimi_tipfriends), VD / Geomap (vd_geomap)
SECURITY-ISSUES-IN-SEVERAL-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-CAR-ABA-WATCHDOG-DR-BLOB-NL-LISTMAN-XDS-STAFF-DANP-DOCUMENTDIRS-STE-PRAYER2-PD-RESOURCES-HS-RELIGIOUSARTGALLERY-STE-PARISH-ADMIN-PD-CALENDAR: Security issues in several third party TYPO3 extensions including car, aba_watchdog, dr_blob, nl_listman, xds_staff, danp_documentdirs, ste_prayer2, pd_resources, hs_religiousartgallery, ste_parish_admin, pd_calendar
Security vulnerabilities have been discovered in following third party TYPO3 extensions: Car (car), TYPO3 Watchdog (aba_watchdog), File list (dr_blob), ListMan (nl_listman), XDS Staff List (xds_staff), Document Directorys (danp_documentdirs), Random Prayer Version 2 (ste_prayer2), Diocese of Portsmouth Resources Database (pd_resources), Parish of the Holy Spirit Religious Art Gallery (hs_religiousartgallery), Parish Administration Database (ste_parish_admin), Diocese of Portsmouth Calendar (pd_calendar), Flash SlideShow (slideshow), Subscription (mf_subscription), No indexed Search (no_indexed_search), Job Exchange (jobexchange), Training Company Database (trainincdb), ZID Linkliste (zid_linklist), vShoutbox (vshoutbox), Frontend news submitter with RTE (fe_rtenews)
SECURITY-ISSUES-IN-SEVERAL-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-CAL-DIRECT-MAIL-AN-SEARCHIT-KK-DOWNLOADER-LT-BASETAG-MCHTRIPS-SIMPLE-GLOSSAR-TW-PRODUCTFINDER-WFQBE: Security issues in several third party TYPO3 extensions including cal, direct_mail, an_searchit, kk_downloader, lt_basetag, mchtrips, simple_glossar, tw_productfinder, wfqbe
Security vulnerabilities have been discovered in following third party TYPO3 extensions: "Calendar Base" (cal), "Direct Mail" (direct_mail), "[AN] Search it!" (an_searchit), "Simple download-system with counter and categories" (kk_downloader), "Automatic Base Tags for RealUrl" (lt_basetag), "Trips" (mchtrips), "simple Glossar" (simple_glossar), "TW Productfinder" (tw_productfinder), "DB Integration" (wfqbe)