Mark Story
3 exploits
Active since May 2019
CakePHP 3.7.6 - Arbitrary File Write via Unserialized Object in SmtpTransport
CVSS 7.5
CakePHP 4.2.0-4.2.11 - SQL Injection via Query::limit() and Query::offset()
CVSS 9.8
CakePHP 5.2.10-5.2.11 - Cross-Site Scripting via PaginatorHelper Limit Control
CVSS 5.4