Package impact
Packagist / froxlor/froxlor
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-5100 | critical | 9.8 | 9.8 | 9y ago | Froxlor guessable password reset token | |||
| CVE-2026-41237 | unknown | — | — | 3h ago | Froxlor has an incomplete fix for CVE-2026-30932 | |||
| CVE-2026-41236 | unknown | — | — | 3h ago | Froxlor has privilege escalation in SSH key synchronization via symlinked `authorized_keys` path | |||
| CVE-2026-41235 | unknown | — | — | 3h ago | Froxlor has an authorization bypass in FTP shell assignment via missing server-side `available_shells` enforcement |