contao/core Security Advisories for 3.5.32 (2)
-
Existing sessions are not correctly invalidated when a user changes their password
Affected version: >=3.0.0,<3.5.39
Reported by:
FriendsOfPHP/security-advisories -
Cross-site scripting (XSS) vulnerability in the system log of the back end
Affected version: >=3.0.0,<3.5.35
Reported by:
FriendsOfPHP/security-advisories