Skip to main navigation Skip to main content Skip to page footer
main logo main logo

[Ticket#2014101710000101] Information Disclosure vulnerability in extension Dynamic Content Elements (dce)

17 October 2014 ยท TYPO3 Security Team 
Dear TYPO3 users,


An Improper Access Control vulnerability has been discovered in TYPO3 CMS extension Dynamic Content Elements (dce). For further 
information on the issue please read the related advisory TYPO3-EXT-SA-2014-015 that was published today:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-015/


In general the TYPO3 Security Team recommends to read the following pages:

The TYPO3 Security Guide:
http://docs.typo3.org/typo3cms/SecurityGuide/

Make sure you are subscribed to the TYPO3 Announce List:
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-announce

See all TYPO3 security advisories for TYPO3 third party extensions:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/



Regards,

Marcus Krause
Member of the TYPO3 Security Team

--
TYPO3 Security Team homepage: http://typo3.org/teams/security/

E-Mail: security@typo3.org

Please note: When replying to this e-mail, please leave the header intact.
Back to list