cakephp/cakephp Security Advisories for 3.5.3 (3)
-
[MEDIUM] Cross-Site Request Forgery in CakePHP
PKSA-8jvz-y796-qyx9 CVE-2020-15400 GHSA-j33j-fg2g-mcv2
Affected version: <3.10.3|>=4.0.0,<4.0.6
Reported by:
GitHub -
[HIGH] Unsafe deserialization in SmtpTransport
PKSA-yzfm-z92t-1mxd CVE-2019-11458 GHSA-qhrx-hcm6-pmrw
Affected version: >=3.0.0,<3.5.18|>=3.6.0,<3.6.15|>=3.7.0,<3.7.7
Reported by:
FriendsOfPHP/security-advisories, GitHub -
[MEDIUM] XSS in some development error pages
PKSA-2nr2-9gyw-vyr4 GHSA-xwhj-pqcg-8rcr
Affected version: >=3.4.0,<3.4.14|>=3.5.0,<3.5.17|>=3.6.0,<3.6.4
Reported by:
FriendsOfPHP/security-advisories, GitHub