Thu. 22nd May, 2014
It has been discovered that TYPO3 CMS is vulnerable to Cross-Site Scripting, Insecure Unserialize, Improper Session Invalidation, Authentication Bypass, Information Disclosure and Host Spoofing.
This is a companion discussion topic for the original entry at https://typo3.org/article/typo3-core-sa-2014-001