Packagist (Composer) package
neos/form
pkg:composer/neos/form
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-32697 | — | >= 1.2.0, < 4.3.3 | 4.3.3 | Jun 21, 2021 | neos/forms is an open source framework to build web forms. By crafting a special `GET` request containing a valid form state, a form can be submitted without invoking any validators. Form state is secured with an HMAC that is still verified. That means that this issue can only be |
- CVE-2021-32697Jun 21, 2021affected >= 1.2.0, < 4.3.3fixed 4.3.3
neos/forms is an open source framework to build web forms. By crafting a special `GET` request containing a valid form state, a form can be submitted without invoking any validators. Form state is secured with an HMAC that is still verified. That means that this issue can only be