Security Advisories
All Advisories
SECURITY-CODE-SPRINT-A-RECAP: Security Code Sprint - A recap
SECURITY-ISSUES-IN-SEVERAL-THIRD-PARTY-TYPO3-EXTENSIONS-INCLUDING-BASIC-SEO-FEATURES-SEO-BASICS-AND-POWERMAIL-POWERMAIL: Security issues in several third party TYPO3 extensions including "Basic SEO Features" (seo_basics) and "powermail" (powermail)
TYPO3-EXT-SA-2011-016: Remote Command Execution and Remote File Disclosure vulnerability in extension pdf_generator2
It has been discovered that the extension pdf_generator2 is vulnerable to Remote Code Execution and Remote File Disclosure
TYPO3-EXT-SA-2011-015: Remote File Disclosure and Cross-Site Scripting vulnerability in extensions pmkshadowbox and pmkslimbox
It has been discovered that the extensions pmkshadowbox and pmkslimbox are vulnerable to Remote File Disclosure and Cross-Site Scripting.
SECURITY-ISSUES-IN-THIRD-PARTY-EXTENSIONS-PDF-GENERATOR2-PMKSHADOWBOX-AND-PMKSLIMBOX: Security issues in third party extensions pdf_generator2, pmkshadowbox and pmkslimbox
SECURITY-ISSUES-IN-THIRD-PARTY-EXTENSION-PHPMYADMIN-PHPMYADMIN: Security issues in third party extension "phpMyAdmin" (phpmyadmin)
TYPO3-EXT-SA-2011-014: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting and Full Path Disclosure.
SECURITY-ISSUE-IN-THIRD-PARTY-EXTENSION-T3BLOG-T3BLOG: Security issue in third party extension "T3Blog" (t3blog)
SECURITY-ISSUES-IN-THIRD-PARTY-TYPO3-EXTENSIONS-3: Security issues in third-party TYPO3 extensions
TYPO3-EXT-SA-2011-012: Several vulnerabilities in third party extensions
Several vulnerabilities have been found in the following third-party TYPO3 extensions: mm_hutinfo, np_indexed_search_stat, rzcolorbox, t3c_podcasts, winning_game, tgm_gallery, tgmv_gallery, bps_shib, dev_null_robots, dhc_inflationcal, dam_frontend, rtg_files, mg_rooms, gridelements