pkg:composer/knplabs/knp-snappy
Type
composer
Namespace
knplabs
Name
knp-snappy
Known advisories, vulnerabilities and fixes for knp-snappy package.
Critical
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 1.4.2 |
CVE-2023-28115
|
PHP:KNPLABS-KNP-SNAPPY-2023-28115 | PHAR deserialization allowing remote code execution | critical |
2023-03-17T15:47:00
(18 months ago) |
|
Affected | <= 1.4.2 |
CVE-2023-41330
|
PHP:KNPLABS-KNP-SNAPPY-2023-41330 | Snappy PHAR deserialization vulnerability | critical |
2023-09-06T15:24:48
(12 months ago) |