Merge pull request #725 from derhansen/master

Added the latest TYPO3 extension security announcements
FriendsOfPHP · Jun 24, 2024 · 60a2fa9 · 60a2fa9
2 parents 1ff41e0 + 7473bd6
commit 60a2fa9
Show file tree

Hide file tree

Showing 2 changed files with 19 additions and 0 deletions.
diff --git a/jweiland/events2/CVE-2024-38874.yaml b/jweiland/events2/CVE-2024-38874.yaml
@@ -0,0 +1,11 @@
+title: 'TYPO3-EXT-SA-2024-003: Multiple vulnerabilities in "Events 2" (events2)'
+link: https://typo3.org/security/advisory/typo3-ext-sa-2024-003
+cve: CVE-2024-38874
+branches:
+    main:
+        time: 2024-06-08 08:35:00
+        versions: ['>=9.0.0', '<9.0.6']
+    8.x:
+        time: 2024-06-08 09:30:00
+        versions: ['<8.3.7']
+reference: composer://jweiland/events2
diff --git a/studiomitte/friendlycaptcha/CVE-2024-38873.yaml b/studiomitte/friendlycaptcha/CVE-2024-38873.yaml
@@ -0,0 +1,8 @@
+title: 'TYPO3-EXT-SA-2024-004: Broken Access Control in "Integration of Friendly Captcha" (friendlycaptcha_official)'
+link: https://typo3.org/security/advisory/typo3-ext-sa-2024-004
+cve: CVE-2024-38873
+branches:
+    main:
+        time: 2024-06-08 09:03:00
+        versions: ['>=0.0.1', '<0.1.4']
+reference: composer://studiomitte/friendlycaptcha