in2code/femanager
Packagist6 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting in2code/femanagerpage 1 of 1
- CVE-2014-6292NONECVSS 0.0EG 0.0✓ Fixed in 1.0.92014-10-03
The femanager extension before 1.0.9 for TYPO3 allows remote frontend users to modify or delete the records of other frontend users via unspecified vectors.
- CVE-2021-36787MEDIUMCVSS 5.4EG 5.4✓ Fixed in 6.3.12021-08-13
vulnerable: 6.0.0 ... 6.3.0 (8 versions)
The femanager extension before 5.5.1 and 6.x before 6.3.1 for TYPO3 allows XSS via a crafted SVG document.
- CVE-2022-44543MEDIUMCVSS 5.3EG 5.3✓ Fixed in 5.5.22023-12-12
vulnerable: 2.5.0 ... 5.5.1 (37 versions)
The femanager extension before 5.5.2, 6.x before 6.3.3, and 7.x before 7.0.1 for TYPO3 allows creation of frontend users in restricted groups (if there is a usergroup field on the registration form). This occurs because the usergroup.inLis…
- CVE-2023-25013HIGHCVSS 8.6EG 8.6✓ Fixed in 7.1.02023-02-02
vulnerable: 7.0.0, 7.0.1
An issue was discovered in the femanager extension before 5.5.3, 6.x before 6.3.4, and 7.x before 7.1.0 for TYPO3. Missing access checks in the InvitationController allow an unauthenticated user to set the password of all frontend users.
- CVE-2023-25014HIGHCVSS 8.6EG 8.6✓ Fixed in 7.1.02023-02-02
vulnerable: 7.0.0, 7.0.1
An issue was discovered in the femanager extension before 5.5.3, 6.x before 6.3.4, and 7.x before 7.1.0 for TYPO3. Missing access checks in the InvitationController allow an unauthenticated user to delete all frontend users.
- CVE-2025-48202MEDIUMCVSS 5.3EG 5.3✓ Fixed in 5.5.52025-05-21
vulnerable: 5.5.0, 5.5.1, 5.5.2, 5.5.3, 5.5.4
The femanager extension through 8.2.1 for TYPO3 allows Insecure Direct Object Reference.
Check whether in2code/femanager is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for in2code/femanager CVEs against the assets you own.
Start Free Scan →