Skip to main navigation Skip to main content Skip to page footer
main logo main logo

Multiple vulnerabilities found in TYPO3 Core

15 August 2012 ยท TYPO3 Security Team 
Dear TYPO3 users!

It has been discovered that the TYPO3 Core is vulnerable to Cross-Site Scripting, Information Disclosure
and Insecure Unserialize leading to Arbitrary Code Execution

For more details on the issues please read the accordant advisory:

TYPO3 Security Bulletin TYPO3-CORE-SA-2012-004: Several Vulnerabilities in TYPO3 Core
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-004/


In general the TYPO3 Security Team recommends to read the following pages:

The TYPO3 Security Guide:
http://typo3.org/documentation/document-library/extension-manuals/doc_guide_security/current/

Make sure you are subscribed to the TYPO3 Announce List:
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-announce

See all TYPO3 security advisories:
http://typo3.org/teams/security/security-bulletins/



Regards,

Helmut Hummel
Member of the TYPO3 Security Team

--
TYPO3 Security Team homepage: http://typo3.org/teams/security/

E-Mail: security@typo3.org
Back to list