Codeception
1 CVEs
product
Monthly
This affects the package codeception/codeception from 4.0.0 and before 4.1.22, before 3.1.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Deserialization
Codeception
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.7%
CVE-2021-23420
PHP
EPSS 3%
CVSS 9.8
CRITICAL
POC
PATCH
Act Now
This affects the package codeception/codeception from 4.0.0 and before 4.1.22, before 3.1.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Deserialization
Codeception
NVD
GitHub