Zum Hauptinhalt springen

Nachrichten

Three Days of Inspo at Web Camp Venlo

Web Camp Venlo: The meeting place for software developers and experts with a focus on open source. Three days packed with workshops, knowledge…

Call for Community Budget Ideas (Q2/2024)

The TYPO3 Association has officially launched the second community budget process of 2024.

Daniel Fau appointed CEO of TYPO3 GmbH

The TYPO3 Association is delighted to announce the appointment of Daniel Fau as CEO of TYPO3 GmbH. Read more about the details that led to this…

TYPO3 v13.0—The Ocean's Calling

It’s time to celebrate, as we announce the first sprint release of the TYPO3 v13 series. TYPO3 version 13.0 is the first step towards the long-term…

Annual Report of the TYPO3 Documentation Team, 2023

The TYPO3 Documentation Team underwent dynamic changes throughout 2023, fostering resilience and innovation in maintaining and enhancing the project's…

T3DD24: Call for Papers

We're ready for your ideas! Submit your suggestion for a talk, session, or panel discussion until 31 March 2024.

TYPO3-EXT-SA-2023-011: Configuration Injection in extension "Direct Mail" (direct_mail)

It has been discovered that the extension "Direct Mail" (direct_mail) is susceptible to Configuration Injection.

TYPO3-EXT-SA-2023-010: Broken Access Control in extension "femanager" (femanager)

It has been discovered that the extension "femanager" (femanager) is susceptible to Broken Access Control.

TYPO3-EXT-SA-2023-009: Insecure Direct Object Reference in extension "Content Consent" (content_consent)

It has been discovered that the extension "Content Consent" (content_consent) is susceptible to Insecure Direct Object Reference.

TYPO3-CORE-SA-2023-007: By-passing Cross-Site Scripting Protection in HTML Sanitizer

It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.

TYPO3-CORE-SA-2023-006: Weak Authentication in Session Handling

It has been discovered that TYPO3 CMS is susceptible to weak authentication.

TYPO3-CORE-SA-2023-005: Information Disclosure in Install Tool

It has been discovered that TYPO3 CMS is susceptible to information disclosure.

TYPO3-EXT-SA-2023-008: Broken Access Control in extension "femanager" (femanager)

It has been discovered that the extension "femanager" (femanager) is susceptible to Broken Access Control.

TYPO3-EXT-SA-2023-007: Broken Access Control in extension "hCaptcha for EXT:form" (hcaptcha)

It has been discovered that the extension "hCaptcha for EXT:form" (hcaptcha) is susceptible to Broken Access Control.

TYPO3-CORE-SA-2023-004: Cross-Site Scripting in CKEditor4 WordCount Plugin

It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.

TYPO3-CORE-SA-2023-003: Information Disclosure due to Out-of-scope Site Resolution

It has been discovered that TYPO3 CMS is susceptible to information disclosure.

TYPO3-CORE-SA-2023-002: By-passing Cross-Site Scripting Protection in HTML Sanitizer

It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.

T3CON23: Call for TYPO3 Award Submissions!

The TYPO3 Awards are back and the winners will be presented during the big Award Ceremony of T3CON23! Did you just finish an outstanding TYPO3 project…

Announcement of Core Mergers 2023

TYPO3 Core development depends on continuous contributions from the TYPO3 community, making the product better. Each year, an application and…

TYPO3-EXT-SA-2023-006: Multiple vulnerabilities in extension "Canto Extension" (canto_extension)

It has been discovered that the extension "Canto Extension" (canto_extension) is susceptible to Server Side Request Forgery and Remote Code Execution.

TYPO3-EXT-SA-2023-005: SQL Injection in extension "ipandlanguageredirect" (ipandlanguageredirect)

It has been discovered that the extension "ipandlanguageredirect" (ipandlanguageredirect) is susceptible to SQL Injection.

TYPO3-EXT-SA-2023-004: Cross-Site Scripting in extension "Faceted Search" (ke_search)

It has been discovered that the extension "Faceted Search" (ke_search) is susceptible to Cross-Site Scripting.

TYPO3 12.4.2 and 11.5.28 maintenance releases published

The versions 12.4.2 and 11.5.28 of the TYPO3 Enterprise Content Management System have just been released.

Report From a Two-Day Code Sprint at the TYPO3 Offices in Düsseldorf, Germany

I really didn’t know what to expect when I decided to go to my first code sprint at TYPO3 HQ. I had been to a few TYPO3 bar camps before so I knew a…

Update on the TYPO3 Content Blocks and Leadership Changes

With the help of a new member, we are actively working on the TYPO3 Content Blocks Core patch for v13. The team has also undergone changes in the…

TYPO3 12.4.1 and 11.5.27 maintenance releases published

The versions 12.4.1 and 11.5.27 of the TYPO3 Enterprise Content Management System have just been released.

Code the TYPO3 Core in 2023

Every year we re-evaluate the Core development workflow and open up for new people to join the effort to drive the TYPO3 Core development further.…

TYPO3 v12 LTS—Here To Save The Day

We are thrilled to announce the release of TYPO3 v12 LTS. This version is our new flagship, and as a long-term support release, it will receive…

Being TYPO3 at Everything Open in Melbourne

Report from a three-day conference on open source in Australia’s second largest city.

T3CON 2023: Connect, Collaborate, and Celebrate at the TYPO3 Conference

We are thrilled to announce that T3CON 2023, the annual TYPO3 conference, will take place on 12–13 October 2023 at Areal Böhler in Düsseldorf. TYPO3…