TYPO3 News & Events Hub
What’s New & What’s Coming
Stay up to date with the latest TYPO3 news and announcements by subscribing to our RSS feed.
June 2019: Developer Appreciation Day (DAD)
Every month, we seize the opportunity to celebrate contributors in our Developer Appreciation Day post. Let's take a moment to share gratitude for the continued passion, commitment, and time which our devoted developers invest into making TYPO3 working flawlessly. Thanks a lot, everyone!
Mehr erfahrenA Structured Content Initiative
Without extensions like Gridelements and Flux, creating and editing semantically and hierarchically structured content can be difficult in TYPO3.
TYPO3-EXT-SA-2019-014: Multiple vulnerabilities in extension "phpMyAdmin" (phpmyadmin)
It has been discovered that the extension "phpMyAdmin" (phpmyadmin) is susceptible to Arbitrary file read and SQL injection.
TYPO3 9.5.8 and 8.7.27 security releases published
The TYPO3 Community announces the versions 9.5.8 LTS and 8.7.27 LTS of the TYPO3 Enterprise Content Management System.
TYPO3-CORE-SA-2019-020: Insecure Deserialization in TYPO3 CMS
It has been discovered that TYPO3 CMS is vulnerable to insecure deserialization.
TYPO3-CORE-SA-2019-019: Arbitrary Code Execution and Cross-Site Scripting in Backend API
It has been discovered, that TYPO3 CMS is vulnerable to arbitrary code execution and cross-site scripting.
TYPO3-CORE-SA-2019-018: Security Misconfiguration in Frontend Session Handling
It has been discovered, that TYPO3 CMS is susceptible to security misconfiguration.
TYPO3-CORE-SA-2019-017: Broken Access Control in Import Module
It has been discovered, that TYPO3 CMS is susceptible to broken access control.
TYPO3-CORE-SA-2019-016: Possible deserialization side-effects in symfony/cache
It has been discovered that a third party dependency used by TYPO3 CMS is susceptible of being used during insecure deserialization.
TYPO3-CORE-SA-2019-015: Cross-Site Scripting in Link Handling
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.