Описание
API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. From 3.2.0 until 3.2.4, exception messages, that are not HTTP exceptions, are visible in the JSON error response. This vulnerability is fixed in 3.2.5.
EPSS
Процентиль: 51%
0.0028
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-209
Связанные уязвимости
CVSS3: 5.3
github
10 месяцев назад
API Platform Core can leak exceptions message that may contain sensitive information
EPSS
Процентиль: 51%
0.0028
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-209