Security vulnerabilities have been discovered in third-party TYPO3 extensions:css_filelinks, terminal, beuserswitch, rtg_files, irfaq, skt_eurocalc, jftcaforms, bc_post2facebook, aeurltool,...

More... (http://news.typo3.org/news/article/security-issues-in-third-party-typo3-extensions-5/)