ezsystems/ezpublish-kernel Security Advisories for v6.13.0 (5)
-
Cross Site Scripting in eZ Platform Ibexa Kernel
Affected version: >=7.5.0,<7.5.15.2|>=6.13.0,<6.13.8.2
Reported by:
GitHub -
User account enumeration in eZ Publish Ibexa Kernel
Affected version: >=7.5.0,<7.5.15.1|>=6.13.0,<6.13.8.1
Reported by:
GitHub -
EZSA-2020-004 Object Injection in SiteAccessMatchListener
Affected version: >=7.5.0,<7.5.7.1|>=6.13.0,<6.13.6.3|>=5.4.0,<5.4.14.2
Reported by:
FriendsOfPHP/security-advisories, GitHub -
EZSA-2020-001 Remote code execution in file uploads
Affected version: >=7.5.0,<7.5.6.2|>=6.13.0,<6.13.6.2|>=5.4.0,<5.4.14.1
Reported by:
FriendsOfPHP/security-advisories, GitHub -
EZSA-2018-008 REST API returns list of all SiteAccesses
Affected version: >=7.3.0,<7.3.2.1|>=7.0.0,<7.2.4.1|>=6.8.0,<6.13.5.1|>=6.0.0,<6.7.9.1|>=5.4.0,<5.4.13.1|>=5.3.0,<5.3.12.1
Reported by:
FriendsOfPHP/security-advisories, GitHub