Security Advisories
All Advisories
SECURITY-ISSUES-IN-THIRD-PARTY-TYPO3-EXTENSIONS-1: Security issues in third-party TYPO3 extensions
Security vulnerabilities have been discovered in third-party TYPO3 extensions "Commenting system Backend Module" (commentsbe), "Tiny Market" (hm_tinymarket), "Yet Another Calendar" (ke_yac), "The official twitter tweet button for your page" (tweetbutton) and "XING Button" (xing).
Read moreSECURITY-ISSUE-IN-THIRD-PARTY-TYPO3-EXTENSION-PHPMYADMIN-PHPMYADMIN-1: Security issue in third party TYPO3 extension "phpMyAdmin" (phpmyadmin)
Security vulnerabilities have been discovered in the third party TYPO3 extension phpMyAdmin.
TYPO3-SA-2010-017: TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting.
TYPO3-SA-2010-016: TYPO3 Security Bulletin
It has been discovered that the extension mm_forum (mm_forum) is vulnerable to Information Disclosure.
SECURITY-ISSUE-IN-THIRD-PARTY-TYPO3-EXTENSION-MM-FORUM-MM-FORUM: Security issue in third-party TYPO3 extension "mm_forum" (mm_forum)
A security vulnerabilitiy have been discovered in the third party TYPO3 extension mm_forum.
TYPO3-SA-2010-015: Multiple vulnerabilities in third-party extensions
Several vulnerabilities have been found in the following third party TYPO3 extensions: Event (event), Fe user statistic (festat), JW Calendar (jw_calendar), Questionnaire (ke_questionnaire), Branchenbuch [Yellow Pages] (mh_branchenbuch), Webkit PDFs (webkitpdf), xaJax Shoutbox (vx_xajax_shoutbox)
SECURITY-ISSUES-IN-THIRD-PARTY-TYPO3-EXTENSIONS: Security issues in third-party TYPO3 extensions
Security vulnerabilities have been discovered in third-party TYPO3 extensions event, festat, jw_calendar, ke_questionnaire, mh_branchenbuch, webkitpdf, vx_xajax_shoutbox
TYPO3-SA-2010-014: TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Broken Access Control.
SECURITY-ISSUE-IN-THIRD-PARTY-TYPO3-EXTENSION-PHPMYADMIN-PHPMYADMIN: Security issue in third party TYPO3 extension "phpMyAdmin" (phpmyadmin)
A vulnerabilitiy has been discovered in the third party TYPO3 extension phpMyAdmin.
MULTIPLE-SECURITY-ISSUES-FOUND-IN-TYPO3-CORE-2: Multiple security issues found in TYPO3 core
It has been discovered that TYPO3 Core is vulnerable to Cross-Site Scripting (XSS), Open Redirection, SQL Injection, Broken Authentication and Session Management, Insecure Randomness, Information Disclosure and Arbitrary Code Execution.