It has been discovered that the TYPO3 Core is vulnerable to Cross-Site Scripting, Insecure Unserialize and Information Disclosure.

More... (http://news.typo3.org/news/article/security-issues-found-in-typo3-core-1/)