VYPR

Platform

by Orchidsoftware

Source repositories

CVEs (3)

  • CVE-2023-36825CriJul 11, 2023
    risk 0.55cvss 9.6epss 0.01

    Orchid is a Laravel package that allows application development of back-office applications, admin/user panels, and dashboards. A vulnerability present starting in version 14.0.0-alpha4 and prior to version 14.5.0 is related to the deserialization of untrusted data from the…

  • CVE-2020-15263HigOct 19, 2020
    risk 0.45cvss 8.0epss 0.01

    In platform before version 9.4.4, inline attributes are not properly escaped. If the data that came from users was not escaped, then an XSS vulnerability is possible. The issue was introduced in 9.0.0 and fixed in 9.4.4.

  • CVE-2024-51992MedNov 11, 2024
    risk 0.20cvss 4.1epss 0.00

    Orchid is a @laravel package that allows for rapid application development of back-office applications, admin/user panels, and dashboards. This vulnerability is a method exposure issue (CWE-749: Exposed Dangerous Method or Function) in the Orchid Platform’s asynchronous modal…