The TYPO3 development team have released a slew of updates to the open source content management system. Namely versions 4.5.29, 4.7.14, 6.0.8 and 6.1.3.
According to the release notes, these are all maintenance updates that include bug & security fixes - notably a fix to a Cross-Site Scripting and Remote Code Execution exploit. It is highly recommended that all users update their systems to these latest releases to maintain secure platforms.
- A regression in the file abstraction layer (FAL) made use of the deleted flag for sys_file objects that was not handled properly. The changed that caused this regression has been reverted again. The "File Abstraction Layer Indexing job" in the TYPO3 scheduler can be used to fix possible inconsistencies in the database that have been produced by this regression.
- Another regression in the Extbase MVC component, which produced wrong language overlays in the website front-end of nested domain entities, has been completely reverted as well.
For details about the releases, please visit the following websites: