Hello TYPO3 enthusiasts, welcome back to this long awaited security related blog series on TYPO3. We have covered latest updates on TYPO3 that have rolled out important security updates on 14th November, 2023. It applies from TYPO3 versions 12.4.8 and 11.5.33. This article examines these recent TYPO3 security updates and their respective security counseling.
TYPO3 Enterprise CMS Versions 12.4.8 and 11.5.33 have just been rolled out. These are the following TYPO3 Updates released:
- TYPO3 12.4.8 LTS
- TYPO3 11.5.33 LTS
All the versions contain important security fixes. Let's examine these updates and their respective security advisories.
A security flaw in TYPO3 CMS has been discovered that could expose information. It was affected in the TYPO3 install tool which is considered as one of the main elements of the system. Hence, it was very essential for implementing this update as soon as possible to cut down the risks.
A security flaw was discovered for weak authentication during session handling which might harm the security of session management. This vulnerability mainly affects the frontend of the website. Hence, an immediate needfulness was required for updating to the latest version and fixing the vulnerability.
A security flaw was discovered in which TYPO3 CMS was vulnerable to cross-site scripting. It is a serious threat as it bypasses Cross-Site Scripting protection in the HTML sanitizer. Hence, an immediate action against this was required for fixing the vulnerability
TYPO3 CMS stands as a beacon of security and upgrading your journey with resilience by providing security updates. In addition to the latest security releases, we also recommend upgrading to these latest security releases. Upgrade/update your TYPO3 experience with our specialized TYPO3 Update and Upgrade Service.
Secure today, succeed tomorrow - Upgrade with us, your TYPO3 guardians!