Tue. 20th January, 2009
It has been discovered that TYPO3 Core is vulnerable to Broken Authentication and Session Management, Cross-Site Scripting, Insecure Randomness and Remote Command Execution.
This is a companion discussion topic for the original entry at https://typo3.org/article/typo3-sa-2009-001