pkg:Packagist/contao/core

All known vulnerabilities

• CRITICAL9.8CVE-2019-10641Contao Does Not Invalidate Existing Sessions When Password Changes
  >= 3.0.0, < 3.5.39
• HIGH8.8CVE-2017-10993Contao Core directory traversal vulnerability
  >= 3.0.0, < 3.5.28
• HIGH8.8CVE-2012-4383Contao core SQL Injection Vulnerability
  from 0, < 2.11.4
• MEDIUM6.1CVE-2018-5478Contao Cross-site Scripting vulnerabililty
  >= 3.0.0, < 3.5.32
• MEDIUM6.1CVE-2016-4567MediaElement Vulnerable to Reflected XSS
  >= 3.0.0, < 3.5.15
• MEDIUM6.1CVE-2018-10125Cross-site Scripting in Contao
  >= 3.0.0, < 3.5.35
• MEDIUM4.3CVE-2015-0269Contao Core directory traversal vulnerability
  >= 3.4.0, < 3.4.4