VYPR

Packagist (Composer) package

ibexa/user

pkg:composer/ibexa/user

Vulnerabilities (1)

  • CVE-2025-67719HigDec 11, 2025
    affected >= 5.0.0-beta1, < 5.0.4fixed 5.0.4

    Ibexa is a composable end-to-end DXP (Digital Experience Platform). Versions 5.0.0-beta1 through 5.0.3 do not have password validation. During the transition from v4 to v5 an error was introduced into validation code which causes the validation of the previous password not to run