sylius/grid-bundle Security Advisories for 1.0.0-patch1 (2)
-
[CRITICAL] DQL injection through sorting parameters blocked
PKSA-qzrz-cm63-b3gx CVE-2022-24752 GHSA-2xmm-g482-4439
Affected version: <1.10.1
Reported by:
GitHub -
[MEDIUM] CVE-2019-12186: XSS injection in the Grid component
PKSA-pvd8-4kh3-vpx1 CVE-2019-12186 GHSA-rc5r-697f-28x6
Affected version: >=1.0.0,<1.1.0|>=1.1.0,<1.1.19|>=1.2.0,<1.2.18|>=1.3.0,<1.3.13|>=1.4.0,<1.4.5|>=1.5.0,<1.5.1
Reported by:
GitHub, FriendsOfPHP/security-advisories