TYPO3 News & Events Hub
What’s New & What’s Coming
Multiple security issues found in TYPO3 core
It has been discovered that improper error handling could lead to cache flooding in TYPO3 Core and that the prepared statement database API potentially allows SQL Injections. Please read the advisories for a description and solutions of all the...
Read moreImproper error handling could lead to cache flooding in TYPO3 Core
It has been discovered that TYPO3 is susceptible to Cache Flooding
Potential SQL injection vulnerability in TYPO3 Core
It has been discovered that the TYPO3 prepared statement database API allows SQL Injections.
FLOW3 1.0.0 beta 2 Released
The FLOW3 core team is delighted to announce the release of FLOW3 1.0.0 beta 2. Thanks to the feedback of FLOW3 users we could identify and fix several bugs an
Successful fourth TYPO3camp in Hamburg
From 5th-7th August more than 120 participants came from all over Germany and neighbouring countries to the TYPO3camp in Hamburg - it was the fourth camp of its kind in the Ha
TYPO3 Conference: Early Bird Phase Extended Until 15th September
The TYPO3 conference team was lucky to get some
Security issues in third-party TYPO3 extensions
Security vulnerabilities have been discovered in third-party TYPO3 extensions: direct_mail_subscription, rgsmoothgallery, th_mailformplus, ameos_dragndropupload For further information on the issues in direct_mail_subscription, please read the r
Several Vulnerabilities in extension MailformPlus (th_mailformplus)
Several vulnerabilities have been found in the following third-party TYPO3 extension: th_mailformplus
Several Vulnerabilities in extension SmoothGallery for TYPO3 (rgsmoothgallery)
Several vulnerabilities have been found in the following third-party TYPO3 extension: rgsmoothgallery
Several Vulnerabilities in extension Direct Mail Subscription (direct_mail_subscription)
Several vulnerabilities have been found in the following third-party TYPO3 extension: direct_mail_subscription
A vulnerability in extension Drag Drop Mass Upload (ameos_dragndropupload)
A vulnerability has been found in the following third-party TYPO3 extension: ameos_dragndropupload
Teams: Screencast team needs members
In trying to improve the documentation and material for newbees a screencast team has been set up. The team needs your support!
HTML5 and Accessibility in TYPO3: Laying a foundation for the future
The past two months Patrick Broens has been working intensively on the Accessibility project, a part of the BLE (Bundesanstalt für Landwirtschaft und Ernährung) project. TYP
TYPO3 4.6beta2 released
Today the TYPO3 community released the second beta version of TYPO3 4.6, in sync with our roadmap.
FLOW3 1.0.0 Beta 1 Released
After eight months of hard work and 1457 change sets committed by 17 developers the FLOW3 core team is delighted to announce the release of FLOW3 1.0.0 beta 1.
Security issues in third-party TYPO3 extensions
Security vulnerabilities have been discovered in third-party TYPO3 extensions: MM DAM - FEFileList (mm_dam_filelist), Events (julle_events), WEC Staff Directory (wec_staffdirectory), TGM news (tgm_news), TGM media (tgm_media), TGM calendar module...
Several vulnerabilities in third party extensions
Several vulnerabilities have been found in the following third-party TYPO3 extensions: MM DAM - FEFileList (mm_dam_filelist), Events (julle_events), WEC Staff Directory (wec_staffdirectory), TGM news (tgm_news), TGM media (tgm_media), TGM calendar...
Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting.
Security issues in third party extension "phpMyAdmin" (phpmyadmin)
Multiple Cross-Site Scripting vulnerabilities have been discovered in the third party TYPO3 extension "phpMyAdmin" (phpmyadmin) For further information on the issue in extension "phpMyAdmin" (phpmyadmin), please read the related advisory...
Security issues in two third party extensions
Several vulnerabilities have been discovered in the third party TYPO3 extensions Formhandler and Questionaire For further information on the issue in extension Formhandler, please read the related advisory TYPO3-EXT-SA-2011-003 that was published...