VYPR

Packagist (Composer) package

verbb/knock-knock

pkg:composer/verbb/knock-knock

Vulnerabilities (2)

  • CVE-2020-13485May 25, 2020
    affected < 1.2.8fixed 1.2.8

    The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.

  • CVE-2020-13486May 25, 2020
    affected < 1.2.8fixed 1.2.8

    The Knock Knock plugin before 1.2.8 for Craft CMS allows malicious redirection.