Security issues in third party TYPO3 extensions
It's not too often that you see notices from the TYPO3 group on security issues related to their CMS framework. That's why their notice last week about various security issues with several third party TYPO3 extensions caught my attention.
Several vulnerabilities have been found in the following third party TYPO3 extensions:
- Virtual Civil Services (civserv)
- Modern Guestbook / Commenting system (ve_guestbook)
- CWT Community (cwt_community)
- FrontEnd MP3 Player (fe_mp3player)
- Search In Tables (fesearchintable)
- Content Search (gst_contentsearch)
- Multilingual Alias (multilingual_alias)
- Myth Repository (myth_repository)
- References database (t3references)
Further information on the security issues can be found at TYPO3.org.
Recommended links
- Security issues in several third party TYPO3 extensions including car, aba_watchdog, dr_blob, nl_listman, xds_staff, danp_documentdirs, ste_prayer2, pd_resources, hs_religiousartgallery, ste_parish_admin, pd_calendar
- Security issues in several third party TYPO3 extensions including car, aba_watchdog, dr_blob, nl_listman, xds_staff, danp_documentdirs, ste_prayer2, pd_resources, hs_religiousartgallery, ste_parish_admin, pd_calendar
- Security issues in third party TYPO3 extension t3blog
- Security issues in several third party TYPO3 extensions
About this CMS Enthusiast
Bryan Ruby is the owner and editor for CMS Report. He founded CMSReport.com in 2006 on the belief that information technologists, website owners, and web developers desired visiting sites where they could learn about content management systems without the sales pitch. Outside of his late night blogging hours, he is the Information Technology Officer for a field office in the federal government.
