[TYPO3-dev] Security announcement for css_filelinks extension
Steffen Müller
typo3 at t3node.com
Thu Feb 2 11:46:01 CET 2012
Hi.
After noticing todays security bulletin and reviewing my installations
for vulnerable extensions, I stumbled upon this one:
CSS styled Filelinks (css_filelinks) is announced as insecure in
versions 0.2.18 and below. The issue should have been fixed in 0.2.19.
But 0.2.19 is released since 2010/10/04.
Does that mean the vulnerability is already fixed since > 1 year?
Can you please explain that?
[1]
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/
[2] http://typo3.org/extensions/repository/view/css_filelinks/current/
--
cheers,
Steffen
TYPO3 Blog: http://www.t3node.com/
Twitter: @t3node - http://twitter.com/t3node
More information about the TYPO3-dev
mailing list