cakephp/cakephp Security Advisories for 4.0.0-beta1 (2)
-
[HIGH] CakePHP allows method override parameters to bypass CSRF checks
PKSA-r2cj-nv22-p8zs CVE-2020-35239 GHSA-9pgx-pf36-w46r
Affected version: >=4.1.0,<4.1.4|>=4.0.0,<4.0.10
Reported by:
GitHub -
[MEDIUM] Cross-Site Request Forgery in CakePHP
PKSA-8jvz-y796-qyx9 CVE-2020-15400 GHSA-j33j-fg2g-mcv2
Affected version: <3.10.3|>=4.0.0,<4.0.6
Reported by:
GitHub