[TYPO3-announce] TYPO3 CMS Core Security Advisory TYPO3-CORE-SA-2013-001
TYPO3 Security Team
security at typo3.org
Wed Mar 6 13:00:26 CET 2013
Dear users of TYPO3!
It has been discovered that the TYPO3 Core is susceptible to SQL Injection and Open Redirection
For more details on the issues please read the accordant advisory:
TYPO3 Security Bulletin TYPO3-CORE-SA-2013-001: SQL Injection and Open Redirection in TYPO3 Core
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-001/
=========================================================================================================
IMPORTANT: Please read the advisory carefully, as ADDITIONAL STEPS might be required after the TYPO3 Update in certain cases.
=========================================================================================================
In general the TYPO3 Security Team recommends to read the following pages:
The TYPO3 Security Guide:
http://typo3.org/documentation/document-library/extension-manuals/doc_guide_security/current/
Make sure you are subscribed to the TYPO3 Announce List:
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-announce
See all TYPO3 security advisories:
http://typo3.org/teams/security/security-bulletins/
Regards,
Helmut Hummel
Member of the TYPO3 Security Team
--
TYPO3 Security Team homepage: http://typo3.org/teams/security/
E-Mail: security at typo3.org
More information about the TYPO3-announce
mailing list