In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade api-platform/core
to version 3.3.15 or higher.
api-platform/core is a builds a fully-featured hypermedia or GraphQL API in minutes.
Affected versions of this package are vulnerable to Omitted Break Statement in Switch in the provide()
function in AccessCheckerProvider.php
, accessible via the GraphQL endpoint. An attacker can bypass security checks intended to be enforced after GraphQL resolvers.