[MEDIUM] TYPO3-EXT-SA-2024-007: Insecure Direct Object Reference in extension "powermail" (powermail)

PKSA-smk7-6q9f-1yz5 CVE-2024-47047 GHSA-q25c-r482-77p9

Affected version: >=12.0.0,<12.4.1|>=9.0.0,<10.9.1|>=8.0.0,<8.5.1|<7.5.1

Reported by:
GitHub, FriendsOfPHP/security-advisories

[MEDIUM] Powermail TYPO3 extension Broken Access Control in the OutputController

PKSA-skk3-z6j6-54hc CVE-2024-45233 GHSA-9jqr-5x45-pgw8

Affected version: >=11.0.0,<12.4.0|>=9.0.0,<10.9.0|>=8.0.0,<8.5.0|<7.5.0

Reported by:
GitHub

[MEDIUM] TYPO3-EXT-SA-2024-006: Multiple vulnerabilities in "powermail" (powermail)

PKSA-x55d-gf1k-6pmy CVE-2024-45232 GHSA-p652-xcgx-f85m

Affected version: >=12.0.0,<12.4.0|>=9.0.0,<10.9.0|>=8.0.0,<8.5.0|<7.5.0

Reported by:
GitHub, FriendsOfPHP/security-advisories