[MEDIUM] Cross-site scripting (XSS) vulnerability in CakePHP

PKSA-y13m-5dm6-fpsk CVE-2006-4067 GHSA-vc29-mvwv-wpcq

Affected package: cakephp/cakephp

Affected version: >=1.0.1.2708,<=1.1.6.3264

Reported by:
GitHub