Heute ist erneut ein Schwung Sicherheitsupdates veröffentlicht worden. Anbei die Liste von allen Security-Bulletins:
- „Store Locator“ (locator) https://typo3.org/news/article/cross-site-scripting-in-extension-store-locator-locator/
- „Code Highlighter“ (mh_code_highlighter) https://typo3.org/news/article/insecure-unserialize-and-sql-injection-in-extension-code-highlighter-mh-code-highlighter/
- „Shibboleth Authentication“ (shibboleth_auth) https://typo3.org/news/article/sql-injection-in-extension-shibboleth-authentication-shibboleth-auth/
- „Secure Download Form“ (rs_securedownload) https://typo3.org/news/article/cross-site-scripting-in-extension-secure-download-form-rs-securedownload/
- „Member Infosheets“ (if_membersheet) https://typo3.org/news/article/sql-injection-in-extension-member-infosheets-if-membersheet/
- „TC Directmail“ (tcdirectmail) https://typo3.org/news/article/unvalidated-redirect-in-extension-tc-directmail-tcdirectmail/
Und erneut: Happy Updating!