Medium severity4.3NVD Advisory· Published Mar 17, 2026· Updated Apr 25, 2026
CVE-2026-4202
CVE-2026-4202
Description
The extension fails to verify, if an authenticated user has permissions to access to redirects resulting in exposure of redirect records when editing a page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ayacoo/redirect-tabPackagist | < 2.1.2 | 2.1.2 |
ayacoo/redirect-tabPackagist | >= 3.0.0, < 3.1.7 | 3.1.7 |
ayacoo/redirect-tabPackagist | >= 4.0.0, < 4.0.5 | 4.0.5 |
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-755r-r738-mjgpghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-4202ghsaADVISORY
- typo3.org/security/advisory/typo3-ext-sa-2026-006nvdVendor AdvisoryWEB
- github.com/ayacoo/redirect_tab/commit/085f4cbf9848241510b5032d1b330889f6de6596ghsaWEB
News mentions
0No linked articles in our index yet.