Hi Balint,
On Sat, Jul 23, 2016 at 08:55:39PM +0200, Bálint Réczey wrote:
> TEMP-000-698CF7: cakephp: XML class SSRF vulnerability
> CVE-2015-8379: CakePHP 2.x and 3.x before 3.1.5 might allow remote
> attackers to bypass the CSRF protection mechanism via the _method
> parameter.
Since one of
Source: cakephp
Version: 2.8.3-1
Severity: serious
Dear Maintainers,
CakePHP is affected by the following security issues listed at
https://security-tracker.debian.org/tracker/source-package/cakephp:
TEMP-000-698CF7: cakephp: XML class SSRF vulnerability
CVE-2015-8379: CakePHP 2.x and 3.x be
2 matches
Mail list logo
