TYPO3 News & Events Hub
What’s New & What’s Coming
This Week in TYPO3 (2015, Week 30)
The TYPO3 steam engine is heated up and full speed ahead after the Developer Days. We have more news than fits in one This Week. An exciting new TYPO3 release on the horizon. Hot TYPO3 Developer Days and the Snowboard Tour comes to Cold Canada....
Read moreUpdated translation server is online
An up-to-date version of the TYPO3 translation server is now online. Contributing to TYPO3 has never been so easy for non-developers. Join us today!
TYPO3 to cooperate with the education project SkillDisplay in Austria
Better transfer of knowledge of CMS
Results of the member poll regarding the Neos split
Two weeks ago the member poll regarding the T3A Neos budgets and related remaining funds has ended. These are the results.
T3Rookies build website for Romanian orphanage
Promotion of young talent at summer camp
June diary of the TYPO3 Association
During the month of June TYPO3 has been visiting Madrid, while its community was involved in voting on the Neos budget and on exchanging thank you notes.
T3BOARD 2016: the planning is on.
A message to the TYPO3 snowboarders and skiers from the organizers of T3BOARD16.
This Week in TYPO3 (2015, Week 26)
This Week we have TYPO3camp Berlin, T3Rookies Summercamp in Romania, codesprint in France and Roar: Docs! Docs! Docs!
TYPO3 CMS 6.2.14 and 7.3.1 released
The TYPO3 Community announces the versions 6.2.14 LTS and 7.0.2 of the TYPO3 Enterprise Content Management System.
Access bypass when editing file metadata
It has been discovered, that editors could change, create or delete metadata of files without permission.
Frontend login Session Fixation
It has been discovered that TYPO3 is susceptible to session fixation.
Cross-Site Scripting in Link Handling & File List
It has been discovered, that TYPO3 is vulnerable to Cross-Site Scripting.
Information Disclosure possibility exploitable by Editors
It has been discovered, that editors could list all files and folders in the root directory of a TYPO3 installation.
Brute Force Protection Bypass in backend login
It has been discovered, that the backend login brute force protection can be bypassed
Cross-Site Scripting in 3rd party library Flowplayer
It has been discovered, that third party component Flowplayer Flash is vulnerable to cross-site scripting.
Cross-Site Scripting in extension "404 Page not found handling" (pagenotfoundhandling)
It has been discovered that the extension "404 Page not found handling" (pagenotfoundhandling) is susceptible to Cross-Site Scripting
This Week in TYPO3 (2015, Week 25)
Neos splits of from the TYPO3 community, release of TYPO3 CMS 7.3, new TYPO3 Agency meetups and events: T3CON15 and T3CON15ASIA
#T3THX – The behind the scene of being a TYPO3 Association Member
With the aim of saying thank you to them, as well as to hear what they would thank the TYPO3 Association for, we asked our Platinum Members to tell us about their experience as crucial supporting part of the TYPO3 Association (T3A).
Member Poll regarding the Neos split
Information about the upcoming poll for members of the TYPO3 Association.
SQL Injection in extension "Akronymmanager" (sb_akronymmanager)
It has been discovered that the extension "Akronymmanager" (sb_akronymmanager) is susceptible to SQL Injection