[MEDIUM] Powermail extension for TYPO3 allows Insecure Direct Object Reference

PKSA-6dn8-jtbj-nzf7 CVE-2025-7899 GHSA-x769-3cwv-f8hc

Affected version: =13.0.0|>=12.0.0,<12.5.3

Reported by:
GitHub

[MEDIUM] TYPO3-EXT-SA-2024-007: Insecure Direct Object Reference in extension "powermail" (powermail)

PKSA-smk7-6q9f-1yz5 CVE-2024-47047 GHSA-q25c-r482-77p9

Affected version: >=12.0.0,<12.4.1|>=9.0.0,<10.9.1|>=8.0.0,<8.5.1|<7.5.1

Reported by:
GitHub, FriendsOfPHP/security-advisories