Vulnerabilities > Cakefoundation > Cakephp > 4.0.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-26 | CVE-2020-35239 | Cross-Site Request Forgery (CSRF) vulnerability in Cakefoundation Cakephp A vulnerability exists in CakePHP versions 4.0.x through 4.1.3. | 6.8 |
| 2020-06-30 | CVE-2020-15400 | Cross-Site Request Forgery (CSRF) vulnerability in Cakefoundation Cakephp CakePHP before 4.0.6 mishandles CSRF token generation. | 4.3 |