[Ticket#2012022310000055] Security issues in several third party TYPO3 extensions including "Frontend User Registration" (sr_f [...]

Dear TYPO3 users,


Several vulnerabilities have been found in the following third party TYPO3
extensions:

Frontend User Registration (sr_feuser_register)

For further information on the issue in the extension "Frontend User Registration"
(sr_feuser_register), please read the related advisory TYPO3-EXT-SA-2012-002 that
was published today:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-002/


Crop and Square Thumbnails (tkcropthumbs)
Typo3 eXtplorer (t3extplorer)
TC BE User Admin (tc_beuser)
Predigtsammlung (an_predigten)
Apache Solr for TYPO3 (solr)
PDF Controller (pdfcontroller)
Share Your Car (cc20)
JW Player (jwplayer)

For further information on all CSB (Collective Security Bulletin) issues, please
read the related advisory TYPO3-EXT-SA-2012-003 that was published today:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-003/



In general the TYPO3 Security Team recommends to read the following pages:

The TYPO3 Security Guide:
http://typo3.org/documentation/document-library/extension-manuals/doc_guide_security/current/

Make sure you are subscribed to the TYPO3 Announce List:
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-announce

See all TYPO3 security advisories for TYPO3 third party extensions:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/

Regards,

Marcus Krause
Member of the TYPO3 Security Team

--
TYPO3 Security Team homepage: http://typo3.org/teams/security/

E-Mail: security@typo3.org

Please note: When replying to this e-mail, please leave the header intact.