News System

News from the Structured Content Initiative

TYPO3 core development is organised into Strategic...

Expanding TYPO3 with Your Help this Spring

If you’re reading this article, you’re likely...

Land ho! Feature Freeze Ahead!

TYPO3 v10.2 in December 2019 marked the last...

The TYPO3 Marketing Team's 2020 Vision

Create. Communicate. Contribute.

Under our newly...

TYPO3 Developers—Get Certified!

The TYPO3 Association launched the official TYPO3...

21 April 2020: TYPO3 v10 LTS Release and Party

The General Assembly is only the second reason why...

TYPO3-EXT-SA-2019-023: CSRF in extension "femanager" (femanager)

  • Release Date: December 17, 2019
  • Component Type:...

TYPO3-EXT-SA-2019-021: Cross Site Scripting in extension "File List" (file_list)

  • Release Date: December 17, 2019
  • Component Type:...

TYPO3-EXT-SA-2019-019: Multiple vulnerabilities in extension "MKSamlAuth" (mksamlauth)

  • Release Date: December 17, 2019
  • Component Type:...

TYPO3 10.2.2, 9.5.13 and 8.7.30 security releases published

The TYPO3 Community announces the versions 10.2.2,...

TYPO3-CORE-SA-2019-026: Insecure Deserialization in Query Generator & Query View

  • Component Type: TYPO3 CMS
  • Subcomponent: Query...

TYPO3-CORE-SA-2019-025: SQL Injection in low-level Query Generator

  • Component Type: TYPO3 CMS
  • Subcomponent: Query...

TYPO3-CORE-SA-2019-024: Directory Traversal on ZIP extraction

  • Component Type: TYPO3 CMS
  • Subcomponent:...

TYPO3-CORE-SA-2019-023: Cross-Site Scripting in Filelist Module

  • Component Type: TYPO3 CMS
  • Subcomponent:...

TYPO3-CORE-SA-2019-022: Cross-Site Scripting in Link Handling

  • Component Type: TYPO3 CMS
  • Subcomponent: Link...

TYPO3-CORE-SA-2019-021: Cross-Site Scripting in Form Framework validation handling

  • Component Type: TYPO3 CMS
  • Subcomponent: Form...

TYPO3-PSA-2019-011: Possible Insecure Deserialization in Extbase Request Handling

  • Component Type: TYPO3 CMS
  • Subcomponent: Extbase...

TYPO3-PSA-2019-010: Cross-Site Scripting Vulnerabilities in File Upload Handling

It has been discovered that TYPO3 is susceptible...

Announcing Selected Budget Ideas for 2020

The TYPO3 Association Budget Committee made a...

Upcoming Elections in the TYPO3 Association 2020

As the Expert Advisory Board will be disbanded and...

TYPO3 Version 10.2 — Treasure Hunting!

TYPO3 v10.2 is out now — the last sprint release...