Search by 
cakephp/cakephp Security Advisories for 4.0.8 (1)
-
CakePHP allows method override parameters to bypass CSRF checks
Affected version: >=4.1.0,<4.1.4|>=4.0.0,<4.0.10
Reported by:
GitHub