Known Vulnerabilities for products from Thephpleague
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Thephpleague".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33347 json | league/commonmark is a PHP Markdown parser. From version 2.3.0 to before version 2.8.2, the DomainFilteringAdapter in the Emb... | Not Provided | 2026-03-24 | 2026-04-08 |
| CVE-2023-37260 json | league/oauth2-server is an implementation of an OAuth 2.0 authorization server written in PHP. Starting in version 8.3.2 and ... | 7.5 - HIGH | 2023-07-06 | 2023-07-13 |
| CVE-2021-32708 json | Flysystem is an open source file storage library for PHP. The whitespace normalisation using in 1.x and 2.x removes any unico... | 8.1 - HIGH | 2021-06-24 | 2023-11-07 |
| CVE-2019-10010 json | Cross-site scripting (XSS) vulnerability in the PHP League CommonMark library before 0.18.3 allows remote attackers to insert... | 6.1 - MEDIUM | 2019-03-24 | 2019-03-26 |
| CVE-2018-20583 json | Cross-site scripting (XSS) vulnerability in the PHP League CommonMark library versions 0.15.6 through 0.18.x before 0.18.1 al... | 6.1 - MEDIUM | 2018-12-30 | 2019-01-15 |
Known software with vulnerabilities from Thephpleague
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Thephpleague | Commonmark | 0.10.0 |