In association with heise online

23 February 2007, 10:47

Update for Typo3 intended to prevent spam

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

A flaw in the form engine of the popular content management system Typo3 allows arbitrary headers to be inserted in e-mails according to the developers, who have not provided any details. Attackers could exploit this hole to send spam, for example. Versions up to 4.0.4 as well as 4.1beta and 4.1RC1 are affected. This flaw has been remedied in version 4.0.5. Users should switch to this version as quickly as possible.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit