GMS-2015-18: Unreliable data validation

August 6, 2015

There’s a flow in Validation::compare() and Validation::range() that makes possible to pass validation criteria using crafted data.

References

bakery.cakephp.org/2015/08/06/cakephp_2_5_9_2_6_10_2_7_2_released.html

Detect and mitigate GMS-2015-18 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →