Security Advisories - mautic/core - Packagist

mautic/core Security Advisories for 5.1.1 (3)

[MEDIUM] Mautic allows Relative Path Traversal in assets file upload

PKSA-r9y9-cx91-ppbj CVE-2022-25773 GHSA-4w2w-36vm-c8hf

Affected version: <5.2.3

Reported by:
GitHub
[HIGH] Mautic allows Improper Authorization in Reporting API

PKSA-d6g7-gn2x-xxxs CVE-2024-47053 GHSA-8xv7-g2q3-fqgc

Affected version: >=1.0.1,<5.2.3

Reported by:
GitHub
[CRITICAL] Mautic allows Remote Code Execution and File Deletion in Asset Uploads

PKSA-r8cy-ghyg-685v CVE-2024-47051 GHSA-73gx-x7r9-77x2

Affected version: <5.2.3

Reported by:
GitHub