VYPR

Mailqueue

by Cps It

Source repositories

CVEs (2)

  • CVE-2026-1323HigMar 17, 2026
    risk 0.50cvss 8.8epss 0.00

    The extension fails to properly define allowed classes used when deserializing transport failure metadata. An attacker may exploit this to execute untrusted serialized code. Note that an active exploit requires write access to the directory configured at…

  • CVE-2026-0895MedJan 20, 2026
    risk 0.27cvss epss 0.00

    The extension extends TYPO3’ FileSpool component, which was vulnerable to Insecure Deserialization prior to TYPO3-CORE-SA-2026-004 https://typo3.org/security/advisory/typo3-core-sa-2026-004 . Since the related fix is overwritten by the extension, using the extension with a…