Server Team Status Report
Like any internal IT department, inquiries come across our desk day in and day out. Most often, we’re helping end-users and community members when…
Get Ready for TYPO3 v12
The first sprint release of the TYPO3 v12 series is just around the corner. We plan to release TYPO3 version 12.0 in less than two weeks, on 4 October…
TYPO3 11.5.16 and 10.4.32 security releases published
The versions 11.5.16 and 10.4.32 of the TYPO3 Enterprise Content Management System have just been released.
TYPO3-CORE-SA-2022-011: By-passing Cross-Site Scripting Protection in HTML Sanitizer
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-010: Cross-Site Scripting in <f:asset.css> view helper
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-009: Stored Cross-Site Scripting via FileDumpController
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-008: Missing check for expiration time of password reset token for backend users
It has been discovered that TYPO3 CMS is vulnerable to broken access control.
TYPO3-CORE-SA-2022-007: User Enumeration via Response Timing
It has been discovered that TYPO3 CMS is vulnerable to information disclosure.
TYPO3-CORE-SA-2022-006: Denial of Service in Page Error Handling
It has been discovered that TYPO3 CMS is susceptible to denial of service.
Introducing a New Way to Meet TYPO3
There is a new event listing at typo3.org, where all of the titles start with “Meet TYPO3 at …”. These are external events where a person representing…
Documentation Team—Summer Update 2022
It’s been a busy summer in the northern hemisphere and we’ve got plenty of updates to share.
TYPO3 Developer Days 2022 Recap
The TYPO3 Developer Days is an international event for developers that takes place every year. For many developers in the community, It is the event…