CVE Vulnerabilities

CVE-2022-47411

Published: Dec 14, 2022 | Modified: Apr 21, 2025
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

An issue was discovered in the fp_newsletter (aka Newsletter subscriber management) extension before 1.1.1, 1.2.0, 2.x before 2.1.2, 2.2.1 through 2.4.0, and 3.x before 3.2.6 for TYPO3. Data about subscribers may be obtained via unsubscribeAction operations.

Affected Software

Name Vendor Start Version End Version
Fp_newsletter Fp_newsletter_project * 1.1.1 (excluding)
Fp_newsletter Fp_newsletter_project 2.0.0 (including) 2.1.2 (excluding)
Fp_newsletter Fp_newsletter_project 2.2.1 (including) 2.4.0 (including)
Fp_newsletter Fp_newsletter_project 3.0.0 (including) 3.2.6 (excluding)
Fp_newsletter Fp_newsletter_project 1.2.0 (including) 1.2.0 (including)

References