Femanager
by In2code De
Source repositories
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-48202 | Med | 0.27 | 5.3 | 0.00 | May 21, 2025 | The femanager extension through 8.2.1 for TYPO3 allows Insecure Direct Object Reference. | ||
| CVE-2023-45023 | med | 0.19 | — | 0.01 | Oct 4, 2023 | femanager fails to check access permissions for the invitation component. Depending on the configuration of the plugin, a remote user can create frontend user accounts with access to configured frontend groups. |
- risk 0.27cvss 5.3epss 0.00
The femanager extension through 8.2.1 for TYPO3 allows Insecure Direct Object Reference.
- risk 0.19cvss —epss 0.01
femanager fails to check access permissions for the invitation component. Depending on the configuration of the plugin, a remote user can create frontend user accounts with access to configured frontend groups.