[MEDIUM] Time-Based Information Disclosure Vulnerability in Flow

PKSA-bwbr-qnv1-v2ws GHSA-2p4f-vc9q-r5vp

Affected version: >=2.3.0,<2.3.16|>=3.0.0,<3.0.10|>=3.1.0,<3.1.7|>=3.2.0,<3.2.7|>=3.3.0,<3.3.5

Reported by:
GitHub, FriendsOfPHP/security-advisories

[MEDIUM] Arbitrary file upload and XML External Entity processing

PKSA-5wgs-7sf8-8pnf GHSA-r6mm-wmhf-849m

Affected version: >=2.3.0,<2.3.7|>=3.0.0,<3.0.1

Reported by:
GitHub, FriendsOfPHP/security-advisories