Kohanaframework Kohana
2 CVEs affecting Kohanaframework Kohana. Latest disclosed: 2017-09-19. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2014-8684 | Critical | 9.8 | 2017-09-19 | CodeIgniter before 3.0 and Kohana 3.2.3 and earlier and 3.3.x through 3.3.2 make it easier for remote attackers to spoof session cookies and consequently condu… |
CVE-2016-10510 | Medium | 6.1 | 2017-08-31 | Cross-site scripting (XSS) vulnerability in the Security component of Kohana before 3.3.6 allows remote attackers to inject arbitrary web script or HTML by byp… |