Security vulnerabilities have been discovered in third-party TYPO3 extensions: direct_mail_subscription, rgsmoothgallery, th_mailformplus, ameos_dragndropupload

More... (http://news.typo3.org/news/article/security-issues-in-third-party-typo3-extensions-copy-1/)