neos/flow Security Advisories (5)
-
[MEDIUM] Flow Bugfix Releases for Entity Security
PKSA-dvnf-qqkg-f9xr GHSA-6pq8-67pw-j6hw
Affected version: >=3.0.0,<3.0.12|>=3.1.0,<3.1.10|>=3.2.0,<3.2.13|>=3.3.0,<3.3.13|>=4.0.0,<4.0.6
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Time-Based Information Disclosure Vulnerability in Flow
PKSA-bj7m-5wrd-5hnz GHSA-5vv7-j593-mgjc
Affected version: >=2.3.0,<2.3.16|>=3.0.0,<3.0.10|>=3.1.0,<3.1.7|>=3.2.0,<3.2.7|>=3.3.0,<3.3.5
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Arbitrary file upload and XML External Entity processing
PKSA-b6j6-98g6-jt8b GHSA-9cw3-j7wg-jwj8
Affected version: >=2.3.0,<2.3.7|>=3.0.0,<3.0.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Cross-Site Scripting in TYPO3 Flow
PKSA-f1h9-x441-fk8v CVE-2013-7082 GHSA-vc74-c4m6-9979
Affected version: >=1.1.0,<1.1.1|>=2.0.0,<2.0.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[LOW] Insecure Unserialize Vulnerability in FLOW3
PKSA-zjqd-q7b5-qqyg GHSA-7h74-7vcw-4mwp
Affected version: >=1.0.0,<1.0.4
Reported by:
GitHub, FriendsOfPHP/security-advisories