Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Thinkphp
(Thinkphp)Repositories | https://github.com/top-think/thinkphp |
#Vulnerabilities | 19 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-03-21 | CVE-2022-25481 | ThinkPHP Framework v5.0.24 was discovered to be configured without the PATHINFO parameter. This allows attackers to access all system environment parameters from index.php. NOTE: this is disputed by a third party because system environment exposure is an intended feature of the debugging mode. | Thinkphp | 7.5 |