It has been discovered that the extension "Front End User Registration" (sr_feuser_register) is susceptible to Remote Code Execution and Insecure…

It has been discovered that the extension "Backup Plus" (ns_backup) is susceptible to Command Injection, Predictable Resource Location and Cross-Site…

It has been discovered that the extension "femanager" (femanager) is susceptible to Insecure Direct Object Reference.

It has been discovered that the extension "[clickstorm] SEO" (cs_seo) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "Download manager" (reint_downloadmanager) is susceptible to Insecure Direct Object Reference.

It has been discovered that the extension "[clickstorm] SEO" (cs_seo) is susceptible to Cross-Site Scripting and Insecure Direct Object Reference.

It has been discovered that the extension “Additional TCA” (additional_tca) is susceptible to Cross-Site Scripting.

It has been discovered that the extension "OpenID Connect Authentication" (oidc) is susceptible to Account Takeover.

It has been discovered that the extension "powermail" (powermail) is susceptible to Insecure Direct Object Reference.

It has been discovered that the extension "powermail" (powermail) is susceptible to Insecure Direct Object Reference and Broken Access Control.