pkg:composer/api-platform/core
Type
composer
Namespace
api-platform
Name
core
Known advisories, vulnerabilities and fixes for core package.
Medium
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | >= 2.3.0, < 2.3.6 >= 2.2.0, < 2.2.10 |
CVE-2019-1000011
|
PHP:API-PLATFORM-CORE-2019-1000011 | Access control bypass in GraphQL mutations | medium |
2019-01-15T17:30:00
(5 years ago) |
|
Affected | >= 3.1.0, < 3.1.3 >= 2.6.0, < 2.7.10 >= 3.0.0, < 3.0.12 |
CVE-2023-25575
|
PHP:API-PLATFORM-CORE-2023-25575 | Secured properties may be accessible within collections | medium |
2023-02-28T10:37:00
(18 months ago) |