CVE-2025-48200

Published May 21, 2025

Last updated a month ago

CVSS critical 10.0

Overview

Description
The sr_feuser_register extension through 12.4.8 for TYPO3 allows Remote Code Execution.
Source
cve@mitre.org
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
10
Impact score
6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

cve@mitre.org
CWE-502

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2025-48200 in sr_feuser_register extension for TYPO3 allows remote code execution via unsafe deserialization. Update to version 12.5.0 or later to secure your system. 🔧 Read more: https://t.co/1odrPiOijO #TYPO3 #RCE #CyberSecurity #Vulert #PatchNow 🛡️ https://t

    @vulert_official

    22 May 2025

    31 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  2. [CVE-2025-48200: CRITICAL] The sr_feuser_register extension through 12.4.8 for TYPO3 allows Remote Code Execution.#cve,CVE-2025-48200,#cybersecurity https://t.co/usiwK9DEEm https://t.co/QtqTDrC8mH

    @CveFindCom

    21 May 2025

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.