VYPR

Packagist (Composer) package

sylius/grid-bundle

pkg:composer/sylius/grid-bundle

Vulnerabilities (2)

  • CVE-2022-24752Mar 15, 2022
    affected < 1.10.1fixed 1.10.1

    SyliusGridBundle is a package of generic data grids for Symfony applications. Prior to versions 1.10.1 and 1.11-rc2, values added at the end of query sorting were passed directly to the database. The maintainers do not know if this could lead to direct SQL injections but took ste

  • CVE-2019-12186Dec 31, 2019
    affected >= 1.0.0, < 1.1.19fixed 1.1.19

    An issue was discovered in Sylius products. Missing input sanitization in sylius/sylius 1.0.x through 1.0.18, 1.1.x through 1.1.17, 1.2.x through 1.2.16, 1.3.x through 1.3.11, and 1.4.x through 1.4.3 and sylius/grid 1.0.x through 1.0.18, 1.1.x through 1.1.18, 1.2.x through 1.2.17