Home > Vulnerability Database > WS-2018-0182

Mend.io Vulnerability Database

WS-2018-0182

Good to know:

Date: October 1, 2018

In alterphp/EasyAdminExetensionBundle, versions prior to v1.3.1 are vulnerable against Improper handling of case sensitivity on action parameter. The application does not properly account for differences in case sensitivity on action parameter, thus lead to inconsistency in accessabilty to resources.

Language: PHP

Severity Score

8.6

Related Resources (2)

Url: https://github.com/alterphp/EasyAdminExtensionBundle/commit/68407ca5be644d1c53fb894453df951230afc6dc

Url: https://www.mend.io/vulnerability-database/WS-2018-0182

Severity Score

8.6

Weakness Type (CWE)

Improper Handling of Case Sensitivity

CWE-178

Top Fix

Upgrade Version

Upgrade to version v1.2.11,v1.3.1

Learn More

CVSS v3.1

Base Score:	8.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	LOW
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

WS-2018-0182

Good to know:

Date: October 1, 2018

Language: PHP

Severity Score

Related Resources (2)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?