Security Advisories - PKSA-6972-2czp-n9y4 - Packagist

PKSA-6972-2czp-n9y4 Security Advisory

[HIGH] Privilege escalation with the form generator

PKSA-6972-2czp-n9y4 CVE-2021-37627 GHSA-hq5m-mqmx-fw6m

Affected package: contao/core-bundle

Affected version: >=4.0.0,<4.4.56|>=4.5.0,<4.6.0|>=4.6.0,<4.7.0|>=4.7.0,<4.8.0|>=4.8.0,<4.9.0|>=4.9.0,<4.9.18|>=4.10.0,<4.11.0|>=4.11.0,<4.11.7

Reported by:
FriendsOfPHP/security-advisories, GitHub