VYPR

Phoenix

by Phoenix Framework

hex: phoenix

Source repositories

CVEs (2)

  • CVE-2026-32689HigMay 5, 2026
    risk 0.50cvss epss 0.00

    Allocation of Resources Without Limits or Throttling vulnerability in phoenixframework phoenix allows a denial of service via the long-poll transport's NDJSON body handling. In 'Elixir.Phoenix.Transports.LongPoll':publish/4, when a POST request is received with Content-Type:…

  • CVE-2017-1000163MedNov 17, 2017
    risk 0.40cvss 6.1epss 0.02

    The Phoenix Framework versions 1.0.0 through 1.0.4, 1.1.0 through 1.1.6, 1.2.0, 1.2.2 and 1.3.0-rc.0 are vulnerable to unvalidated URL redirection, which may result in phishing or social engineering attacks.