Security Advisories
All Advisories
TYPO3-20081020-2: SQL Injection in extension Commerce (commerce)
It has been discovered that the extension Commerce (commerce) is vulnerable to SQL Injection attacks.
Read moreTYPO3-20081020-1: TYPO3 Security Bulletin
Several vulnerabilities have been found in the following third party TYPO3 extensions: JobControl (dmmjobcontrol), Econda Plugin (econda), Frontend Users View (feusersview), Mannschaftsliste (kiddog_playerlist), M1 Intern (m1_intern), Simple survey (simplesurvey), Page Improvements (sm_pageimprovements)
SECURITY-ISSUES-IN-TYPO3-EXTENSION-COMMERCE-AND-SEVERAL-OTHER-THIRD-PARTY-EXTENSIONS: Security issues in TYPO3 extension Commerce and several other third party extensions
Security issues have been discovered in the following third party TYPO3 extensions: Commerce (commerce), JobControl (dmmjobcontrol), Econda Plugin (econda), Frontend Users View (feusersview), Mannschaftsliste (kiddog_playerlist), M1 Intern (m1_intern), Simple survey (simplesurvey), Page Improvements (sm_pageimprovements)
TYPO3-20080924-2: TYPO3 Security Bulletin
It has been discovered that the extension freeCap CAPTCHA (sr_freecap) is vulnerable to Cross-Site Scripting.
TYPO3-20080924-1: TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Cross-Site Scripting.
TWO-THIRD-PARTY-TYPO3-EXTENSIONS-FOUND-INSECURE: Two third party TYPO3 extensions found insecure
The extensions phpMyAdmin (phpmyadmin) and freeCap CAPTCHA (sr_freecap) have been found insecure.
TYPO3-20080919-1: TYPO3 Security Bulletin
Several vulnerabilities have been found in TYPO3 third party extensions.
SECURITY-BULLETIN-TYPO3-20080919-1-MULTIPLE-THIRD-PARTY-EXTENSIONS-FOUND-INSECURE: Security Bulletin TYPO3-20080919-1: Multiple third party extensions found insecure
A total of 11 third party extensions have been found insecure. Please follow the links in this news item, in order to see which extensions have has been found insecure.
SECURITY-BULLETIN-TYPO3-20080916-1-CODE-EXECUTION-VULNERABILITY-IN-EXTENSION-PHPMYADMIN-1: Security Bulletin TYPO3-20080916-1: Code execution vulnerability in extension phpMyAdmin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is open for code execution.
TYPO3-20080916-1: TYPO3 Security Bulletin
It has been discovered that the extension phpMyAdmin (phpmyadmin) is vulnerable to Code Execution.