[TYPO3-english] Overview of extensions with security issues?

Marcus Krause marcus#exp2010 at t3sec.info
Sat Nov 6 18:56:37 CET 2010


J. Schaller schrieb am 11/06/2010 06:48 PM Uhr:
> On Sat, 06 Nov 2010 18:30:02 +0100, Steffen Gebert
> The reason I come up with this is that I checked via backend for the
> availabilty of certain extensions which would enhace comments and
> installed an old version 0.1 of an extension that was flagged as
> insecure as of 0.2 which I later found out. Of course, that newer
> extension is not available via the EM, and if I'd known that I
> wouldn't have bothered with the old version either.

So you have installed an ext that is insecure in version 0.2 but
obviously not in v0.1. Sounds odd enough.

Could you please forward the extension key via mail to me or the
security team. I think of double-checking just to be sure.

Thank you in advance,

Marcus Krause.

More information about the TYPO3-english mailing list