It has been discovered that the extension "[clickstorm] SEO" (cs_seo) is susceptible to Cross-Site Scripting and Insecure Direct Object Reference.

It has been discovered that the extension “Additional TCA” (additional_tca) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "OpenID Connect Authentication" (oidc) is susceptible to Account Takeover.

It has been discovered that the extension "powermail" (powermail) is susceptible to Insecure Direct Object Reference.

It has been discovered that the extension "powermail" (powermail) is susceptible to Insecure Direct Object Reference and Broken Access Control.

It has been discovered that the extension "Aimeos shop and e-commerce framework" (aimeos) is susceptible to Remote Code Execution and Insecure Direct…

It has been discovered that the extension "Integration of Friendly Captcha" (friendlycaptcha_official) is susceptible to Broken Access Control.

It has been discovered that the extension "Events 2" (events2) is susceptible to Cache Poisoning, Insecure Direct Object Reference and SQL wildcard…

It has been discovered that the extension "OpenID Connect Authentication" (oidc) is susceptible to Authentication Bypass.

It has been discovered that the extension "Event management and registration" (sf_event_mgt) is susceptible to Broken Access Control.