typo3fluid/fluid Security Advisories for 2.1.2 (2)
-
[HIGH] Cross-Site Scripting through Fluid view helper arguments
PKSA-8nx7-7p1f-7mw8 CVE-2020-26216 GHSA-hpjm-3ww5-6cpf
Affected version: >=2.0.0,<2.0.8|>=2.1.0,<2.1.7|>=2.2.0,<2.2.4|>=2.3.0,<2.3.7|>=2.4.0,<2.4.4|>=2.5.0,<2.5.11|>=2.6.0,<2.6.10
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Cross-Site Scripting in Fluid Engine
PKSA-tttn-qhs1-tx1g CVE-2020-15241 GHSA-7733-hjv6-4h47
Affected version: >=2.0.0,<2.0.5|>=2.1.0,<2.1.4|>=2.2.0,<2.2.1|>=2.3.0,<2.3.5|>=2.4.0,<2.4.1|>=2.5.0,<2.5.5|>=2.6.0,<2.6.1
Reported by:
GitHub, FriendsOfPHP/security-advisories