CVE-2026-4202

UNKNOWN 0.0

Broken Access Control in extension "Redirect Tab"

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

The extension fails to verify, if an authenticated user has permissions to access to redirects resulting in exposure of redirect records when editing a page.

CWE	CWE-862 CWE-200
Vendor	typo3
Product	extension "redirect tabs"
Published	Mar 17, 2026
Last Updated	Mar 17, 2026

Stay Ahead of the Next One

Get instant alerts for typo3 extension "redirect tabs"

Be the first to know when new unknown vulnerabilities affecting typo3 extension "redirect tabs" are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

TYPO3 / Extension "Redirect Tabs"

4.0.0 < 4.0.5 3.0.0 < 3.1.7 0 < 2.1.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

typo3.org: https://typo3.org/security/advisory/typo3-ext-sa-2026-006

Credits

🔍 Guido Schmechel Guido Schmechel