pkg:Packagist/api-platform/core

6 total CVEsHIGH3MEDIUM3

✅ Check your installed version

All known vulnerabilities

  • HIGH7.7CVE-2023-25575api-platform/core's secured properties may be accessible within collections
    >= 3.0.0, < 3.0.12
  • HIGH7.5CVE-2025-31485GraphQL grant on a property might be cached with different objects
    >= 4.0.0-alpha.1, < 4.0.22
  • HIGH7.5CVE-2025-31481GraphQL query operations security can be bypassed
    >= 4.0.0-alpha.1, < 4.0.22
  • MEDIUM6.5CVE-2019-1000011Incorrect Access Control vulnerability in api-platform/core
    >= 2.2.0, < 2.2.10
  • MEDIUM5.3CVE-2023-47639API Platform Core can leak exceptions message that may contain sensitive information
    >= 3.2.0, < 3.2.5
  • MEDIUM4.4CVE-2025-23204API Platform Core does not call GraphQl securityAfterResolver
    >= 3.3.8, < 3.3.15
Packagist/api-platform/core — 6 CVEs · VulnScope