TYPO3 6.0.12
10 December 2013
TYPO3 version 6.0.12 is now available (security release).
Upgrading to TYPO3 6.0.12
TYPO3 6.0.12 can be upgraded to (or installed) using any of Installatron's products. Use Installatron's optional Automatic Update feature to automatically apply TYPO3 updates as new versions are released, or use Installatron's Clone feature to duplicate an existing TYPO3 install to test the 6.0.12 upgrade prior to applying it live. Get started managing your TYPO3 installations with Installatron
What's New in TYPO3 6.0.12
- [SECURITY] XSS in header link of all content elements (#31206)
- [SECURITY] XSS in colorpicker wizard (#42772)
- [SECURITY] Prevent editor controlled hmac content (#45043)
- [SECURITY] XSS in backend user adminstration (#48691)
- [SECURITY] Information Disclosure in Wizards (#41714)
- [SECURITY] Fix open redirection in openid extension (#54099)
- [SECURITY] feuser_adminLib.inc allows to set arbitrary fields (#48187)
- [SECURITY] XSS in be_layout wizard (#36768)
- [SECURITY] XSS in beuser VH (#47086)
- [SECURITY] Remove possible XSS from ActionController Error output (#54074)
- [SECURITY] Unsafe unserialize of GET parameter in Add-Wizard (#54073)
- [BUGFIX] ClientUtility does not detect Internet Explorer 11 (#54124)
- [BUGFIX] Add missing namespacing for calling GeneralUtility (#54117)
- [BUGFIX] ext:adodb Restrict connection wizard to admins (#42651)