2.2.5

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-04	CVE-2019-1000011	Unspecified vulnerability in Api-Platform Core API Platform version from 2.2.0 to 2.3.5 contains an Incorrect Access Control vulnerability in GraphQL delete mutations that can result in a user authorized to delete a resource can delete any resource. network low complexity api-platform	5.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.