CVE-2009-1264: Frontend User Registration extension for TYPO3 does not properly verify access rights
(updated )
Frontend User Registration (sr_feuser_register) extension 2.5.20 and earlier for TYPO3 does not properly verify access rights, which allows remote authenticated users to obtain sensitive information such as passwords via unknown attack vectors.
References
- github.com/TYPO3-extensions/sr_feuser_register
- github.com/advisories/GHSA-rjrq-93hp-22ww
- nvd.nist.gov/vuln/detail/CVE-2009-1264
- web.archive.org/web/20090527190538/http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-004
- web.archive.org/web/20200228205603/http://www.securityfocus.com/bid/34374
Code Behaviors & Features
Detect and mitigate CVE-2009-1264 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →