[HIGH] The Front End User Registration extension for TYPO3 (sr_feuser_register) allows Insecure Direct Object Reference

PKSA-6x8h-qxw4-n4zv CVE-2025-48205 GHSA-cvgc-mx2w-h3w8

Affected version: >=5.1.0,<12.5.0

Reported by:
GitHub

[CRITICAL] TYPO3-EXT-SA-2025-008: Multiple vulnerabilities in extension "Front End User Registration" (sr_feuser_register)

PKSA-c6tr-p1v1-385w CVE-2025-48200 GHSA-qfm8-78qf-p75j

Affected version: >=5.1.0,<12.5.0

Reported by:
GitHub, FriendsOfPHP/security-advisories