sjbr/sr-feuser-register

Packagist4 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting sjbr/sr-feuser-registerpage 1 of 1

CVE-2009-1264NONECVSS 0.0✓ Fixed in 2.5.21
2009-04-07
Frontend User Registration (sr_feuser_register) extension 2.5.20 and earlier for TYPO3 does not properly verify access rights, which allows remote authenticated users to obtain sensitive information such as passwords via unknown attack vec…
CVE-2012-5890NONECVSS 0.0✓ Fixed in 2.6.2
2012-11-17
The Front End User Registration (sr_feuser_register) extension before 2.6.2 for TYPO3 allows remote attackers to obtain user names and passwords via the (1) edit perspective or (2) autologin feature.
CVE-2025-48200CRITICALCVSS 10.0EG 10.0✓ Fixed in 12.5.0
2025-05-21
vulnerable: 5.1.0 ... v7.0.5 (26 versions)
The sr_feuser_register extension through 12.4.8 for TYPO3 allows Remote Code Execution.
CVE-2025-48205HIGHCVSS 8.6EG 8.6✓ Fixed in 12.5.0
2025-05-21
vulnerable: 5.1.0 ... v7.0.5 (26 versions)
The sr_feuser_register extension through 12.4.8 for TYPO3 allows Insecure Direct Object Reference.

Check whether sjbr/sr-feuser-register is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for sjbr/sr-feuser-register CVEs against the assets you own.

Start Free Scan →