derhansen/sf_event_mgt

Packagist2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting derhansen/sf_event_mgtpage 1 of 1

CVE-2020-25026MEDIUMCVSS 4.3EG 4.3✓ Fixed in 5.1.1
2020-09-02
vulnerable: 5.0.0, 5.0.1, 5.1.0
The sf_event_mgt (aka Event management and registration) extension before 4.3.1 and 5.x before 5.1.1 for TYPO3 allows Information Disclosure (participant data, and event data via email) because of Broken Access Control.
CVE-2024-24751MEDIUMCVSS 4.3EG 4.3✓ Fixed in 7.4.0
2024-02-13
vulnerable: 7.0.0 ... 7.3.3 (10 versions)
sf_event_mgt is an event management and registration extension for the TYPO3 CMS based on ExtBase and Fluid. In affected versions the existing access control check for events in the backend module got broken during the update of the extens…

Check whether derhansen/sf_event_mgt is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for derhansen/sf_event_mgt CVEs against the assets you own.

Start Free Scan →