ezsystems/ezplatform-admin-ui Security Advisories for v2.3.7 (2)
-
[CRITICAL] eZ Platform users with the Company admin role can assign any role to any user
PKSA-jxny-cxn1-wv1s GHSA-pcpm-vc4v-cmvx
Affected version: >=2.3.0,<2.3.26|>=1.5.0,<1.5.29
Reported by:
GitHub -
[CRITICAL] ezplatform-admin-ui vulnerable to Cross-Site Scripting (XSS)
PKSA-n7hv-2v7b-q6sp GHSA-58h5-h554-429q
Affected version: >=2.3.0,<2.3.26
Reported by:
GitHub