CVE-2025-7900
EUVD-2025-2230522.07.2025, 11:15
The femanager extension for TYPO3 allows Insecure Direct Object Reference resulting in unauthorized modification of userdata. This issue affects femanager version 6.4.1 and below, 7.0.0 to 7.5.2 and 8.0.0 to 8.3.0Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| typo3 | typo3 | 𝑥 ≤ 6.4.1 |
| typo3 | typo3 | 7.0.0 ≤ 𝑥 ≤ 7.5.2 |
| typo3 | typo3 | 8.0.0 ≤ 𝑥 ≤ 8.3.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration