[TYPO3-announce] [Ticket#2014101710000101] Information Disclosure vulnerability in extension Dynamic Content Elements (dce)
TYPO3 Security Team
security at typo3.org
Fri Oct 17 15:49:55 CEST 2014
Dear TYPO3 users,
An Improper Access Control vulnerability has been discovered in TYPO3 CMS extension Dynamic Content Elements (dce). For further
information on the issue please read the related advisory TYPO3-EXT-SA-2014-015 that was published today:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-015/
In general the TYPO3 Security Team recommends to read the following pages:
The TYPO3 Security Guide:
http://docs.typo3.org/typo3cms/SecurityGuide/
Make sure you are subscribed to the TYPO3 Announce List:
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-announce
See all TYPO3 security advisories for TYPO3 third party extensions:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/
Regards,
Marcus Krause
Member of the TYPO3 Security Team
--
TYPO3 Security Team homepage: http://typo3.org/teams/security/
E-Mail: security at typo3.org
Please note: When replying to this e-mail, please leave the header intact.
More information about the TYPO3-announce
mailing list