ezsystems/ezpublish-legacy vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the https://github.com|ezsystems/ezpublish-legacy package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Access Restriction Bypass	[3.5.0,3.7.1)
M CVE-2007-4494	[,3.8.9)
M Resource Management Errors	[,3.8.2)
M Access Restriction Bypass	[,20050830)
M Cross-site Scripting (XSS)	[,3.7.4)
M Improper Authentication	[3.4.4,3.7.1)
H Access Restriction Bypass	[,3.5.7)
L Access Restriction Bypass	[3.5.0,3.5.5)[3.6.0,3.6.2)
M Improper Data Handling	[,3.8.2)
M Access Restriction Bypass	[,3.8.2)
M Cross-site Request Forgery (CSRF)	[4.1.0,4.3.0]
M Access Restriction Bypass	[,3.8.5)
M Cross-site Scripting (XSS)	[,5.4.9]
C CVE-2007-4493	[,3.8.9)
C Access Restriction Bypass	[,5.2.7)[6.0.0,6.0.10)
H SQL Injection	[3.7.0,4.2.0]
M Cross-site Scripting (XSS)	[3.7.0,4.2.0]
H CVE-2012-1565	[4.1.4,4.6.0]
M Access Restriction Bypass	[3.5.0,3.5.8)