VYPR
Vendor

In2code De

Products
2
CVEs
3
Across products
3
Status
Private

Products

2

Recent CVEs

3
  • CVE-2025-7899MedJul 22, 2025
    risk 0.32cvss epss 0.00

    The powermail extension for TYPO3 allows Insecure Direct Object Reference resulting in download of arbitrary files from the webserver. This issue affects powermail version 12.0.0 up to 12.5.2 and version 13.0.0

  • CVE-2025-48202MedMay 21, 2025
    risk 0.27cvss 5.3epss 0.00

    The femanager extension through 8.2.1 for TYPO3 allows Insecure Direct Object Reference.

  • CVE-2023-45023medOct 4, 2023
    risk 0.19cvss epss 0.01

    femanager fails to check access permissions for the invitation component. Depending on the configuration of the plugin, a remote user can create frontend user accounts with access to configured frontend groups.