Mon. 10th October, 2005
A bug has been discovered in the "Front End News Submitter" (fe_news) where SQL injection is not safely prevented. fe_rtenews is affected as well.
This is a companion discussion topic for the original entry at https://typo3.org/article/security-bulletin-typo3-20051010-1-fe-news/