[MEDIUM] Femanager extension for TYPO3 allows Insecure Direct Object Reference

PKSA-nbcd-j79h-9hxy CVE-2025-7900 GHSA-rc5f-3hfv-jxp2

Affected version: >=8.0.0,<8.3.1|>=7.0.0,<7.5.3|<6.4.2

Reported by:
GitHub

[MEDIUM] TYPO3-EXT-SA-2025-006: Insecure Direct Object Reference in extension "femanager" (femanager)

PKSA-p2c4-qwpc-3xvm CVE-2025-48202 GHSA-xxwr-wv9g-7jw3

Affected version: >=8.0.0,<8.2.2|>=7.0.0,<7.4.2|>=6.0.0,<6.4.1|>=5.5.0,<5.5.5

Reported by:
GitHub, FriendsOfPHP/security-advisories