Packagist (Composer) package
bcosca/fatfree
pkg:composer/bcosca/fatfree
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-5203 | — | < 3.7.2 | 3.7.2 | Mar 11, 2020 | In Fat-Free Framework 3.7.1, attackers can achieve arbitrary code execution if developers choose to pass user controlled input (e.g., $_REQUEST, $_GET, or $_POST) to the framework's Clear method. |
- CVE-2020-5203Mar 11, 2020affected < 3.7.2fixed 3.7.2
In Fat-Free Framework 3.7.1, attackers can achieve arbitrary code execution if developers choose to pass user controlled input (e.g., $_REQUEST, $_GET, or $_POST) to the framework's Clear method.