CVE-2014-6292

The femanager extension before 1.0.9 for TYPO3 allows remote frontend users to modify or delete the records of other frontend users via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
VendorProductVersion
in2codefemanager
𝑥
≤ 1.0.8
in2codefemanager
1.0.0
in2codefemanager
1.0.1
in2codefemanager
1.0.2
in2codefemanager
1.0.3
in2codefemanager
1.0.4
in2codefemanager
1.0.5
in2codefemanager
1.0.6
in2codefemanager
1.0.7
𝑥
= Vulnerable software versions
References
http://typo3.org/extensions/repository/view/femanager
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-002/
http://typo3.org/extensions/repository/view/femanager
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-002/