Growing Talent in the Job Market Desert
The call of businesses is strong and well-known—young tech talents are needed! But enticing a young audience to choose the path of IT…
Information From the Budget Q&A
This article contains information from that meeting as well as some additional facts and considerations.
Main Conclusions
- The …
TYPO3 Demo and QA Best Practices Join Forces
Demo Project
The TYPO3 demo site is available at demo.typo3.org. The goal of the project is to provide an instance where anyone is able…
This Is Lina Wolf, the New Documentation Team Co-Lead
“After completing my computer science studies in 2006, I got a boring Java job,” says Lina. “But then I met someone who showed me TYPO3…
TYPO3 11.5.12 and 10.4.30 maintenance releases published
The following TYPO3 updates have been released:
- TYPO3 11.5.12 LTS
- TYPO3 10.4.30 LTS
Further upgrade instructions
No database…
TYPO3-CORE-SA-2022-005: Insufficient Session Expiration in Admin Tool
It has been discovered that TYPO3 CMS is susceptible to broken access control.
TYPO3-CORE-SA-2022-004: Cross-Site Scripting in Frontend Login Mailer
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-003: Cross-Site Scripting in Form Framework
It has been discovered that TYPO3 CMS is vulnerable to cross-site scripting.
TYPO3-CORE-SA-2022-002: Information Disclosure via Exception Handling/Logger
It has been discovered that TYPO3 CMS is susceptible to information disclosure.
TYPO3-CORE-SA-2022-001: Information Disclosure via Export Module
It has been discovered that TYPO3 CMS is susceptible to information disclosure.
TYPO3 11.5.11 and 10.4.29 security releases published
The following TYPO3 updates have been released:
- TYPO3 11.5.11 LTS
- TYPO3 10.4.29 LTS
All versions are security releases and contain…
TYPO3-EXT-SA-2022-013: Cross-Site Scripting in extension "AMEOS - TarteAuCitron (GDPR cookie banner and tracking management / French RGPD compatible)" (ameos_tarteaucitron)
It has been discovered that the extension "AMEOS - TarteAuCitron (GDPR cookie banner and tracking management / French RGPD compatible)"…
TYPO3-EXT-SA-2022-012: Cross-Site Scripting in extension "Embedding schema.org vocabulary" (schema)
It has been discovered that the extension "Embedding schema.org vocabulary" (schema) is susceptible to Cross-Site Scripting.
TYPO3-EXT-SA-2022-011: Cross-Site Scripting in extension "Matomo Integration" (matomo_integration)
It has been discovered that the extension "Matomo Integration" (matomo_integration) is susceptible to Cross-Site Scripting.
TYPO3-EXT-SA-2022-010: Cross-Site Scripting in extension "libconnect" (libconnect)
It has been discovered that the extension "libconnect" (libconnect) is susceptible to Cross-Site Scripting.
typo3.org Website Team Report 2022 Q1
Sprints / t3o Remote Days
We have done t3o Remote Days on:
- January 15th and 25th
- February 15th and 25th
- March 15th and 25th
We…
Deprecation and Shutdown of TER SOAP Interface
The SOAP interface was introduced more than 15 years ago, for managing and uploading extensions. TYPO3 version 4.5 was the last version…