[HIGH] eZ Platform Object Injection in SiteAccessMatchListener

PKSA-f997-fdf2-12v5 GHSA-64vj-933f-6pm3

Affected version: >=5.4.0,<5.4.15|>=6.13.0,<6.13.6.4|>=7.5.0,<7.5.8

Reported by:
GitHub

[MEDIUM] User account enumeration in eZ Publish Ibexa Kernel

PKSA-xy38-8tb1-r2db CVE-2021-46876 GHSA-89p3-9j8c-fqh4

Affected version: >=7.5.0,<7.5.15.1|>=6.13.0,<6.13.8.1

Reported by:
GitHub

[MEDIUM] Cross Site Scripting in eZ Platform Ibexa Kernel

PKSA-fm8v-vkhn-dc5g CVE-2021-46875 GHSA-c737-jhwr-fqxj

Affected version: >=7.5.0,<7.5.15.2|>=6.13.0,<6.13.8.2

Reported by:
GitHub