TYPO3 News & Events Hub
What’s New & What’s Coming
Stay up to date with the latest TYPO3 news and announcements by subscribing to our RSS feed.
The Second Year Of ELTS 9.5 Starts Today
ELTS keeps you up-to-date and legally compliant. While there is no one-size-fits-all for maintaining your website and keeping it safe, when a release moves into the ELTS phase, TYPO3 guarantees maintenance for an additional three-year period.
Mehr erfahrenHat Tip to TYPO3 Coders - September 2022
Each month, we take the opportunity to celebrate contributors in our TYPO3 Developer Appreciation Day blog post. Please take a moment to share gratitude for their continued passion, commitment, and time invested in making TYPO3 CMS awesome.
Server Team Status Report — September 2022
Like any internal IT department, inquiries come across our desk day in and day out. Most often, we’re helping end-users and community members when they encounter a problem with our infrastructure, for example, logging in to their TYPO3 account.
Get Ready for TYPO3 v12
The first sprint release of the TYPO3 v12 series is just around the corner. We plan to release TYPO3 version 12.0 in less than two weeks, on 4 October 2022. This article reveals some of the overall technical details and planned release dates of the v12 series.
TYPO3 11.5.16 and 10.4.32 security releases published
The versions 11.5.16 and 10.4.32 of the TYPO3 Enterprise Content Management System have just been released.
TYPO3-CORE-SA-2022-011: By-passing Cross-Site Scripting Protection in HTML Sanitizer
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-010: Cross-Site Scripting in view helper
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-009: Stored Cross-Site Scripting via FileDumpController
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-008: Missing check for expiration time of password reset token for backend users
It has been discovered that TYPO3 CMS is vulnerable to broken access control.
TYPO3-CORE-SA-2022-007: User Enumeration via Response Timing
It has been discovered that TYPO3 CMS is vulnerable to information disclosure.