Security Advisories - cakephp/cakephp - Packagist

cakephp/cakephp Security Advisories for 3.7.5 (2)

Cross-Site Request Forgery in CakePHP

CVE-2020-15400

Affected version: <3.10.3|>=4.0.0,<4.0.6

Reported by:
GitHub
Unsafe deserialization in SmtpTransport

CVE-2019-11458

Affected version: >=3.0.0,<3.5.18|>=3.6.0,<3.6.15|>=3.7.0,<3.7.7

Reported by:
FriendsOfPHP/security-advisories, GitHub