Several vulnerabilities have been found in the following third party TYPO3 extensions: "Virtual Civil Services" (civserv), "Modern Guestbook / Commenting system" (ve_guestbook), "CWT Community"...

More... (http://news.typo3.org/news/article/security-issues-in-several-third-party-typo3-extensions-including-civserv-cwt-community-and-ve-gues/)