buzz.typo3.org: Security Team

Wednesday 11. of March 2009 Secured version of a21glossary available in TER

After having published bulletin TYPO3-SA-2009-003, the TYPO3 Security Team has been contacted by the extension owner who provided a security fix for that issue.

[read more >> ]

Thursday 19. of June 2008 Collective Security Bulletins (CSB), the reason for...

The TYPO3 Security Team has started a new procedure for publishing bulletins on security issues in some extensions. This procedure only covers TYPO3 third party software.

[read more >> ]

Wednesday 11. of June 2008 Advice on core security issue regarding fileDenyPattern

Within Security Bulletin TYPO3-20080611-1, the Security Team has informed the public about the dangers of a wrong value of fileDenyPattern in combination with the Apache module mod_mime. This topic is quite complex, so Security...

Category: Security

[read more >> ]

Friday 06. of July 2007 Massive Web Server Hacks (iFrame Attacks) - Now Extended To TYPO3

Lately, numerous reports have been discussing a new scheme of attacks that affect all kinds of web servers. This wave has now reached TYPO3 (and other CMS systems).

Category: Security

[read more >> ]

Friday 06. of July 2007 Welcome!

Dear reader,Welcome to the opening post of the TYPO3 Security Team on the buzz.Until now the security team has worked in a very close forum. That will continue, but we have started this blog to give us one more communication...

Category: Security

[read more >> ]

Archive:

Wednesday 11. of March 2009 Secured version of a21glossary available in TER

Thursday 19. of June 2008 Collective Security Bulletins (CSB), the reason for...

Wednesday 11. of June 2008 Advice on core security issue regarding fileDenyPattern

Friday 06. of July 2007 Massive Web Server Hacks (iFrame Attacks) - Now Extended To TYPO3

Friday 06. of July 2007 Welcome!

Friday 06. of July 2007 Massive Web Server Hacks (iFrame Attacks) - Now Extended To TYPO3