Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.1% on packagist.org
Top 0.2% downloads on packagist.org
Top 0.1% dependent packages on packagist.org
Top 0.1% dependent repos on packagist.org
Top 0.1% forks on packagist.org
Top 0.2% docker downloads on packagist.org

packagist.org : cakephp/cakephp

The CakePHP framework

Registry - Source - Homepage - JSON
purl: pkg:composer/cakephp/cakephp
Keywords: framework, orm, form, mvc, validation, dry, psr-7, rapid-development, conventions over configuration, cakephp, form-builder, hacktoberfest, mvc-framework, php, rest-api, web, web-framework
License: MIT
Latest release: 20 days ago
First release: about 10 years ago
Namespace: cakephp
Dependent packages: 1,483
Dependent repositories: 5,525
Downloads: 13,008,571 total
Stars: 8,673 on GitHub
Forks: 3,443 on GitHub
Docker dependents: 8
Docker downloads: 16,632,612
Total Commits: 35093
Committers: 813
Average commits per author: 43.165
Development Distribution Score (DDS): 0.679
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Last synced: 3 days ago

High
GSA_kwCzR0hTQS01OTY0LXBxOHItNHE2Ms4AAfIB
CakePHPallows remote attackers to read arbitrary files via XML data containing external entity references
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yN3A2LWZyM3gtcjg3N84AAfus
CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS12YzI5LW12d3Ytd3Bjcc2KDg
Cross-site scripting (XSS) vulnerability in CakePHP
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
High
GSA_kwCzR0hTQS05cGd4LXBmMzYtdzQ2cs4AAnV9
CakePHP allows method override parameters to bypass CSRF checks
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS04MjlxLXY1ZzgtaGh4Y84AAxG6
CakePHP has incorrect Cross-Site Request Forgery validation
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14d2hqLXBxY2ctOHJjcs4AAxHB
CakePHP vulnerable to Cross-site Scripting in some development error pages
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS02ZzhxLXFmcHYtNTd3cM4AAxFy
CakePHP Database\\Query::offset() and limit() methods are vulnerable to SQL injection
Ecosystems: packagist
Packages: cakephp/database, cakephp/cakephp
Source: github
Published: over 1 year ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFocngtaGNtNi1wbXJ3
Unsafe deserialization in SmtpTransport in CakePHP
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: over 4 years ago
Moderate
GSA_kwCzR0hTQS1ydzczLXhtcHYtajV4Ms2NbQ
CakePHP directory traversal vulnerability allows remote attackers to read arbitrary files
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozM2otZmcyZy1tY3Yy
Cross-Site Request Forgery in CakePHP
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wNzZmLXdyMjItNHJ2Ns4AAxHA
CakePHP vulnerable to Remote File Inclusion through View template name manipulation
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02aGc0LXZwNXEtNDdtd84AAxG_
CakePHP allows direct access of prefixed controller actions
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: over 1 year ago
High
GSA_kwCzR0hTQS1qOHAzLThtNjktMmhxcc4AAVTw
CakePHP allows remote attackers to spoof their IP
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
High
GSA_kwCzR0hTQS01NTZxLWg0dnItcGdoMs4AAV_g
CakePHP might allow remote attackers to bypass CSRF protection mechanism via the _method parameter
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1xNzltLWM1NDYtMmc2M84AAxG-
CakePHP vulnerable to Denial of Service attack through XML payloads
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: over 1 year ago
High
GSA_kwCzR0hTQS1nMnZ4LTh2NDctNHZoaM4AAgCu
CakePHP allows remote attackers to modify internal Cake cache and execute arbitrary code
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1qOXEyLWY5cTctamhncc4AAxG9
CakePHP SecurityComponent cross form submission issue
Ecosystems: packagist
Packages: cakephp/cakephp
Source: github
Published: over 1 year ago