Description
An issue was discovered in the fp_newsletter (aka Newsletter subscriber management) extension before 1.1.1, 1.2.0, 2.x before 2.1.2, 2.2.1 through 2.4.0, and 3.x before 3.2.6 for TYPO3. Data about subscribers may be obtained via createAction operations.
Published: 2022-12-14
Score: 9.1 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2022-50173 "Newsletter subscriber management" (fp_newsletter) TYPO3 extension leaks subscriber data
Github GHSA Github GHSA GHSA-vxmc-qg5x-pvfx "Newsletter subscriber management" (fp_newsletter) TYPO3 extension leaks subscriber data
History

Mon, 21 Apr 2025 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Subscriptions

Fp Newsletter Project Fp Newsletter
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-04-21T18:50:17.594Z

Reserved: 2022-12-14T00:00:00.000Z

Link: CVE-2022-47410

cve-icon Vulnrichment

Updated: 2024-08-03T14:55:08.304Z

cve-icon NVD

Status : Modified

Published: 2022-12-14T21:15:14.540

Modified: 2025-04-21T19:15:18.577

Link: CVE-2022-47410

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses