robrichards/xmlseclibs Security Advisories for 1.4.x-dev (2)
-
[HIGH] Critical signature bypass
PKSA-9qfh-kpgp-dw7t CVE-2019-3465 GHSA-pqm6-cgwr-x6pf
Affected version: >=1.0.0,<2.0.0|>=2.0.0,<2.1.1|>=3.0.0,<3.0.4
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Filter input to avoid XPath injection
PKSA-2f54-4t85-fzzg GHSA-2g98-f9jv-w8c5
Affected version: >=1.0.0,<2.0.0|>=2.0.0,<3.0.0|>=3.0.0,<3.0.2
Reported by:
GitHub, FriendsOfPHP/security-advisories