Several vulnerabilities have been found in the following third-party TYPO3 extensions: alpha_sitemap, femanager ke_stats, outstats, px_phpids, smarty, wec_map

More... (http://typo3.org/news/article/several-vulnerabilities-in-third-party-extensions/)