TYPO3 aktuelle Meldungen

Component Type: TYPO3 CMSSubcomponent: List Module (ext:backend, ext:recordlist)Release Date: September 9, 2025Vulnerability Type: Information DisclosureAffected Versions: 11.0.0-11.5.47,…

Component Type: TYPO3 CMSSubcomponent: Workspaces Module (ext:workspaces)Release Date: September 9, 2025Vulnerability Type: Information DisclosureAffected Versions: 9.0.0-9.5.54, 10.0.0-10.4.53,…

Component Type: TYPO3 CMSSubcomponent: Backend Routing (ext:backend)Release Date: September 9, 2025Vulnerability Type: Broken Access ControlAffected Versions:9.0.0-9.5.54, 10.0.0-10.4.53,…

Component Type: TYPO3 CMSSubcomponent: File Abstraction Layer (ext:core)Release Date: September 9, 2025Vulnerability Type: Information DisclosureAffected Versions: 9.0.0-9.5.54, 10.0.0-10.4.53,…

Component Type: TYPO3 CMSSubcomponent: Crypto (ext:core)Release Date: September 9, 2025Vulnerability Type: Insufficient EntropyAffected Versions: 12.0.0-12.4.36, 13.0.0-13.4.17Severity:…

Component Type: TYPO3 CMSSubcomponent: Bookmark Toolbar (ext:backend)Release Date: September 9, 2025Vulnerability Type: Denial of ServiceAffected Versions: 11.0.0-11.5.47, 12.0.0-12.4.36,…

Component Type: TYPO3 CMSSubcomponent: Core Utilities (ext:core)Release Date: September 9, 2025Vulnerability Type: Open RedirectAffected Versions: 9.0.0-9.5.54, 10.0.0-10.4.53, 11.0.0-11.5.47,…

Release Date: September 2, 2025Component Type: Third party extension. This extension is not a part of the TYPO3 default installation.Component: "TYPO3 Backup Plus" (ns_backup)Composer Package Name:…

Type: AdvisoryComponent Type: TYPO3 CMSSubcomponent: SVG Sanitizer (based on enshrined/svg-sanitize)Release Date: August 14, 2025Impact: Link Injection, in some cases Cross-Site ScriptingAffected…

Release Date: July 22, 2025Component Type: Third party extension. This extension is not a part of the TYPO3 default installation.Component: femanager (femanager)Composer Package Name:…