Security Advisories for cakephp/cakephp in packagist
Moderate
over 2 years ago
CakePHP vulnerable to Cross-site Scripting in some development error pages
packagist
cakephp/cakephp
Moderate
over 2 years ago
CakePHP vulnerable to Remote File Inclusion through View template name manipulation
packagist
cakephp/cakephp
Moderate
over 2 years ago
CakePHP allows direct access of prefixed controller actions
packagist
cakephp/cakephp
High
over 2 years ago
CakePHP vulnerable to Denial of Service attack through XML payloads
packagist
cakephp/cakephp
Moderate
over 2 years ago
CakePHP SecurityComponent cross form submission issue
packagist
cakephp/cakephp
Moderate
over 2 years ago
CakePHP has incorrect Cross-Site Request Forgery validation
packagist
cakephp/cakephp
Critical
over 2 years ago
CakePHP Database\\Query::offset() and limit() methods are vulnerable to SQL injection
packagist
cakephp/cakephp
High
over 3 years ago
CakePHP allows method override parameters to bypass CSRF checks
packagist
cakephp/cakephp
High
over 3 years ago
CakePHP allows remote attackers to modify internal Cake cache and execute arbitrary code
packagist
cakephp/cakephp
Moderate
over 3 years ago
CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file
packagist
cakephp/cakephp
High
over 3 years ago
CakePHPallows remote attackers to read arbitrary files via XML data containing external entity references
packagist
cakephp/cakephp
High
over 3 years ago
CakePHP might allow remote attackers to bypass CSRF protection mechanism via the _method parameter
packagist
cakephp/cakephp
Moderate
over 3 years ago
CakePHP directory traversal vulnerability allows remote attackers to read arbitrary files
packagist
cakephp/cakephp
Moderate
over 3 years ago
Cross-site scripting (XSS) vulnerability in CakePHP
packagist
cakephp/cakephp
High
almost 6 years ago
Unsafe deserialization in SmtpTransport in CakePHP
packagist
cakephp/cakephp