← back
CVE-2022-44543

CVE-2022-44543

EPSS 0.6%
The femanager extension before 5.5.2, 6.x before 6.3.3, and 7.x before 7.0.1 for TYPO3 allows creation of frontend users in restricted groups (if there is a usergroup field on the registration form). This occurs because the usergroup.inList protection mechanism is mishandled.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://typo3.org/help/security-advisorieshttps://typo3.org/security/advisory/typo3-ext-sa-2022-015