Mark Story

3 exploits Active since May 2019
CVE-2019-11458 WRITEUP HIGH WRITEUP
CakePHP 3.7.6 - Arbitrary File Write via Unserialized Object in SmtpTransport
An issue was discovered in SmtpTransport in CakePHP 3.7.6. An unserialized object with modified internal properties can trigger arbitrary file overwriting upon destruction.
CVSS 7.5
CVE-2023-22727 WRITEUP CRITICAL WRITEUP
CakePHP 4.2.0-4.2.11 - SQL Injection via Query::limit() and Query::offset()
CakePHP is a development framework for PHP web apps. In affected versions the `Cake\Database\Query::limit()` and `Cake\Database\Query::offset()` methods are vulnerable to SQL injection if passed un-sanitized user request data. This issue has been fixed in 4.2.12, 4.3.11, 4.4.10. Users are advised to upgrade. Users unable to upgrade may mitigate this issue by using CakePHP's Pagination library. Manually validating or casting parameters to these methods will also mitigate the issue.
CVSS 9.8
CVE-2026-23643 WRITEUP MEDIUM WRITEUP
CakePHP 5.2.10-5.2.11 - Cross-Site Scripting via PaginatorHelper Limit Control
CakePHP is a rapid development framework for PHP. The PaginatorHelper::limitControl() method has a cross-site-scripting vulnerability via query string parameter manipulation. This issue has been fixed in 5.2.12 and 5.3.1.
CVSS 5.4