Vulnerabilities > Derhansen
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-09-02 | CVE-2020-25026 | Incorrect Authorization vulnerability in Derhansen Event Management and Registration The sf_event_mgt (aka Event management and registration) extension before 4.3.1 and 5.x before 5.1.1 for TYPO3 allows Information Disclosure (participant data, and event data via email) because of Broken Access Control. | 4.0 |