| CVE-2017-1000247 |
high |
7.5 |
7.5 |
|
|
|
9y ago |
CodeIgniter HTTP Header Injection |
| CVE-2025-54418 |
unknown |
— |
— |
|
|
|
10mo ago |
CodeIgniter4's ImageMagick Handler has Command Injection Vulnerability |
| CVE-2025-24013 |
unknown |
— |
— |
|
|
|
1y ago |
Missing validation of header name and value in codeigniter4/framework |
| CVE-2024-29904 |
unknown |
— |
— |
|
|
|
2y ago |
CodeIgniter4 DoS Vulnerability |
| CVE-2023-46240 |
unknown |
— |
— |
|
|
|
3y ago |
CodeIgniter4 vulnerable to information disclosure when detailed error report is displayed in production environment |
| CVE-2023-32692 |
unknown |
— |
— |
|
|
|
3y ago |
Remote Code Execution Vulnerability in Validation Placeholders in CodeIgniter4 |
| CVE-2022-46170 |
unknown |
— |
— |
|
|
|
4y ago |
CodeIgniter4 Potential Session Handlers Vulnerability |
| CVE-2022-23556 |
unknown |
— |
— |
|
|
|
4y ago |
CodeIgniter4 allows spoofing of IP address when using proxy |
| CVE-2022-39284 |
unknown |
— |
— |
|
|
|
4y ago |
Codeigniter4's Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued |
| CVE-2020-10793 |
unknown |
— |
— |
|
|
|
4y ago |
CodeIgniter Improper Privilege Management |
| CVE-2022-24712 |
unknown |
— |
— |
|
|
|
4y ago |
Cross-Site Request Forgery (CSRF) Protection Bypass Vulnerability in CodeIgniter4 |
| CVE-2022-24711 |
unknown |
— |
— |
|
|
|
4y ago |
Remote CLI Command Execution Vulnerability in CodeIgniter4 |
| CVE-2022-21715 |
unknown |
— |
— |
|
|
|
4y ago |
Cross-site Scripting Vulnerability in CodeIgniter4 |
| CVE-2022-21647 |
unknown |
— |
— |
|
|
|
5y ago |
Deserialization of Untrusted Data in Codeigniter4 |