The femanager extension before 5.5.2, 6.x before 6.3.3, and 7.x before 7.0.1 for TYPO3 allows creation of frontend users in restricted groups (if there is a usergroup field on the registration form). This occurs because the usergroup.inList protection mechanism is mishandled.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-12-12T00:00:00

Updated: 2024-08-03T13:54:03.938Z

Reserved: 2022-11-01T00:00:00

Link: CVE-2022-44543

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-12-12T17:15:07.663

Modified: 2024-11-21T07:28:06.037

Link: CVE-2022-44543

cve-icon Redhat

No data.