http://news.typo3.org/ news.typo3.org: The TYPO3 news resource en http://news.typo3.org/fileadmin/news.typo3.org/xmlicon.gif http://news.typo3.org/ 88 31 news.typo3.org: The TYPO3 news resource http://backend.userland.com/rss091 Tue, 13 May 2008 09:24:00 +0200 http://news.typo3.org/news/article/security-bulletin-typo3-20080513-4-multiple-vulnerabilities-in-extension-statistics-ke-stats/ It has been discovered that the extension Statistics (ke_stats) is vulnerable to Blind SQL Injection attacks. Also, a Cross Site Scripting issue has been found. http://news.typo3.org/news/article/security-bulletin-typo3-20080513-3-cross-site-scripting-vulnerability-in-extension-event-database/ It has been discovered that the extension Event Database (rlmp_eventdb) is susceptible to Cross Site Scripting (XSS) attacks. http://news.typo3.org/news/article/security-bulletin-typo3-20080513-2-cross-site-scripting-vulnerability-in-extension-questionaire-pb/ It has been discovered that the extension Questionaire (pbsurvey) is susceptible to Cross Site Scripting (XSS) attacks. http://news.typo3.org/news/article/security-bulletin-typo3-20080513-1-multiple-vulnerabilities-in-extension-wt-gallery-wt-gallery/ It has been discovered that the extension WT Gallery (wt_gallery) is susceptible to Path Traversal and Cross Site Scripting (XSS) attacks. Besides that, it may disclose sensitive information. http://news.typo3.org/news/article/typo3-v5-project-report-april-2008/ For all of you who are not that deeply involved in the making of TYPO3 v5, I have collected the most important bits of last month's activities. http://news.typo3.org/news/article/security-bulletin-typo3-20080505-2-cross-site-scripting-vulnerability-in-extension-powermail/ It has been discovered that the extension powermail is susceptible to Cross Site Scripting (XSS) attacks. http://news.typo3.org/news/article/security-bulletin-typo3-20080505-1-multiple-vulnerabilities-in-extension-mailformplus-th-mailformp/ It has been discovered that the extension MailformPlus (th_mailformplus) is susceptible to Cross Site Scripting (XSS) attacks and allows Remote Code Execution. http://news.typo3.org/news/article/typo3-association-releases-version-42-focus-on-usability-and-performance-improvements/ BAAR - The TYPO3 Association 4.x Development Team has released a new version of their very successful open source project. TYPO3 has been downloaded over 3.000.000 times from Sourceforge.org which... http://news.typo3.org/news/article/t3board09/ Lightning does hit twice! T3BOARD returns to LAAX from the 22. to the 29. of march 2009! http://news.typo3.org/news/article/typo3-42-rc-2/ The core team is proud to announce the second Release Candidate of TYPO3 version 4.2. We now think that we do have all blockers for a final release fixed so that if no critical bugs are found in this...