News-Feeds:
Monday 05. of May 2008 Security Bulletin TYPO3-20080505-1: Multiple vulnerabilities in extension MailformPlus (th_mailformplus)
It has been discovered that the extension MailformPlus (th_mailformplus) is susceptible to Cross Site Scripting (XSS) attacks and allows Remote Code Execution.
Wednesday 16. of April 2008 Security Bulletin TYPO3-20080416-2: SQL Injections in extensions pmk_rssnewsexport and cm_rdfexport
It has been discovered that the extensions pmk_rssnewsexport and cm_rdfexport are vulnerable to SQL Injection attacks.
Wednesday 16. of April 2008 Security Bulletin TYPO3-20080416-1: Multiple vulnerabilities in extension de_phpot
It has been discovered that the extension de_phpot is vulnerable to multiple SQL Injection flaws and other types of security issues.
Monday 10. of December 2007 TYPO3 Security Bulletin 20071210-1: SQL Injection in system extension indexed_search
It has been discovered that the system extension indexed_search is vulnerable to a SQL Injection flaw.
Wednesday 19. of September 2007 TYPO3 Security Bulletin 20070919-1: Multiple vulnerabilities in extension mm_forum
It has been discovered that the extension mm_forum is vulnerable to multiple SQL Injection attacks and multiple XSS flaws alongside other vulnerabilities.
Wednesday 01. of August 2007 TYPO3 Security Bulletin 20070801-1: Multiple vulnerabilities in extension ve_guestbook
It has been discovered that the extension ve_guestbook is vulnerable to SQL Injection attacks. Also, a Cross Site Scripting issue has been detected.
Thursday 19. of July 2007 TYPO3 Security Bulletin 20070719-1: Remote shell command execution in extensions embedding PHPMailer
Multiple TYPO3 extensions is affected by the third party tool PHPMailer, which is vulnerable to a remote shell command execution.
