Vulnerabilities > Locutus

DATE CVE VULNERABILITY TITLE RISK
2021-06-08 CVE-2021-23392 Unspecified vulnerability in Locutus
The package locutus before 2.0.15 are vulnerable to Regular Expression Denial of Service (ReDoS) via the gopher_parsedir function.
network
low complexity
locutus
5.0
2020-09-01 CVE-2020-7719 Unspecified vulnerability in Locutus
Versions of package locutus before 2.0.12 are vulnerable to prototype Pollution via the php.strings.parse_str function.
network
low complexity
locutus
critical
9.8
2020-07-01 CVE-2020-13619 Injection vulnerability in Locutus PHP
php/exec/escapeshellarg in Locutus PHP through 2.0.11 allows an attacker to achieve code execution.
network
low complexity
locutus CWE-74
7.5