Search by 
codeigniter4/framework Security Advisories for v4.0.0-alpha.3 (8)
-
Remote Code Execution Vulnerability in Validation Placeholders in CodeIgniter4
Affected version: <4.3.5
Reported by:
GitHub -
Reported by:
FriendsOfPHP/security-advisories, GitHub -
CVE-2022-23556: Attackers may spoof IP address when using proxy
Affected version: <4.2.11
Reported by:
FriendsOfPHP/security-advisories, GitHub -
CVE-2022-39284: Config\Cookie Secure or HttpOnly flag not set in CodeIgniter4
Affected version: <4.2.7
Reported by:
FriendsOfPHP/security-advisories, GitHub -
CVE-2022-24711: Remote CLI Command Execution Vulnerability in CodeIgniter4
Affected version: <4.1.9
Reported by:
FriendsOfPHP/security-advisories, GitHub -
CVE-2022-24712: Cross-Site Request Forgery (CSRF) Protection Bypass Vulnerability in CodeIgniter4
Affected version: <4.1.9
Reported by:
FriendsOfPHP/security-advisories, GitHub -
CVE-2022-21715: XSS Vulnerability in API\ResponseTrait in CodeIgniter4
Affected version: <4.1.8
Reported by:
FriendsOfPHP/security-advisories, GitHub -
CVE-2022-21647: Deserialization of Untrusted Data in Codeigniter4
Affected version: <4.1.6
Reported by:
FriendsOfPHP/security-advisories, GitHub