Vulnerabilities (CVE)

Filtered by vendor Locutus Subscribe
Filtered by product Locutus
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-23392 1 Locutus 1 Locutus 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
The package locutus before 2.0.15 are vulnerable to Regular Expression Denial of Service (ReDoS) via the gopher_parsedir function.
CVE-2020-7719 1 Locutus 1 Locutus 2024-11-21 7.5 HIGH 9.8 CRITICAL
Versions of package locutus before 2.0.12 are vulnerable to prototype Pollution via the php.strings.parse_str function.