cbcvebase.

Typo3 Sr Feuser Register Extension vulnerabilities

4 known vulnerabilities affecting typo3/sr_feuser_register_extension.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2025-48200P2CRITICALCVSS 10.0≥ 5.1.0, < 12.5.02025-05-21
CVE-2025-48200 [CRITICAL] CWE-502 CVE-2025-48200: The sr_feuser_register extension through 12.4.8 for TYPO3 allows Remote Code Execution. The sr_feuser_register extension through 12.4.8 for TYPO3 allows Remote Code Execution.
nvd
CVE-2025-48205P3HIGHCVSS 8.6≥ 5.1.0, < 12.5.02025-05-21
CVE-2025-48205 [HIGH] CWE-425 CVE-2025-48205: The sr_feuser_register extension through 12.4.8 for TYPO3 allows Insecure Direct Object Reference. The sr_feuser_register extension through 12.4.8 for TYPO3 allows Insecure Direct Object Reference.
nvd
CVE-2008-2275P3HIGHCVSS 7.5v1.4.0v1.6.0+18 more2008-05-16
CVE-2008-2275 [HIGH] CWE-94 CVE-2008-2275: Unspecified vulnerability in sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, Unspecified vulnerability in sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, and 2.5.0 to 2.5.9 extension for TYPO3 allows remote attackers to execute arbitrary code and delete arbitrary files via unspecified attack vectors.
nvd
CVE-2008-2274P4MEDIUMCVSS 4.3v1.4.0v1.6.0+23 more2008-05-16
CVE-2008-2274 [MEDIUM] CWE-79 CVE-2008-2274: Cross-site scripting (XSS) vulnerability in the sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3 Cross-site scripting (XSS) vulnerability in the sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, and 2.5.0 to 2.5.9 extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
Typo3 Sr Feuser Register Extension vulnerabilities | cvebase