Typo3 · Direct Mail · CVE-2020-12698
**Name of the Vulnerable Software and Affected Versions**
direct mail extension for TYPO3 versions through 5.2.3
**Description**
The issue concerns Broken Access Control, specifically affecting newsletter subscriber tables.
**Recommendations**
For versions through 5.2.3, update to a version later than 5.2.3 to resolve the issue.