Vulnerabilities > Cakefoundation > Cakephp > 1.1.7.3363
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-30 | CVE-2020-15400 | Cross-Site Request Forgery (CSRF) vulnerability in Cakefoundation Cakephp CakePHP before 4.0.6 mishandles CSRF token generation. | 4.3 |
| 2006-09-27 | CVE-2006-5031 | Path Traversal vulnerability in Cakefoundation Cakephp Directory traversal vulnerability in app/webroot/js/vendors.php in Cake Software Foundation CakePHP before 1.1.8.3544 allows remote attackers to read arbitrary files via a .. | 5.0 |