VulnerableCode Package Details - pkg:composer/mautic/core@4.0.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-1kzz-9ysf-u3d2 Aliases: CVE-2022-25769 GHSA-mj6m-246h-9w56 GMS-2022-182	Improper regex in htaccess file The default .htaccess file has some restrictions in the access to PHP files to only allow specific PHP files to be executed in the root of the application.	4.2.0 Affected by 0 other vulnerabilities.
VCID-h55b-gu47-4kfw Aliases: CVE-2021-27913 GHSA-x7g2-wrrp-r6h3	Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) The function mt_rand is used to generate session tokens, this function is cryptographically flawed due to its nature being one pseudorandomness, an attacker can take advantage of the cryptographically insecure nature of this function to enumerate session tokens for accounts that are not under his/her control This issue affects: Mautic Mautic ;	There are no reported fixed by versions.
VCID-rtzh-qevh-r7ae Aliases: CVE-2025-5257 GHSA-cqx4-9vqf-q3m8		4.4.16 Affected by 0 other vulnerabilities. 5.2.6 Affected by 0 other vulnerabilities. 6.0.2 Affected by 0 other vulnerabilities.
VCID-x16f-ftqk-n3e2 Aliases: CVE-2025-13828 GHSA-3fq7-c5m8-g86x	Mautic user without privileged access to the Marketplace can install and uninstall composer packages A non privileged user can install and remove arbitrary packages via composer for a composer based installed, even if the flag in update settings for enable composer based update is unticked.	4.4.18 Affected by 0 other vulnerabilities. 5.2.9 Affected by 0 other vulnerabilities. 6.0.7 Affected by 0 other vulnerabilities.
VCID-zb5w-5thk-audh Aliases: CVE-2021-27912 GHSA-rh5w-82wh-jhr8	Cross-site Scripting Mautic is vulnerable to an inline JS XSS attack when viewing Mautic assets by utilizing inline JS in the title and adding a broken image URL as a remote asset. This can only be leveraged by an authenticated user with permission to create or edit assets.	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-1kzz-9ysf-u3d2
Aliases:
CVE-2022-25769
GHSA-mj6m-246h-9w56
GMS-2022-182

Improper regex in htaccess file The default .htaccess file has some restrictions in the access to PHP files to only allow specific PHP files to be executed in the root of the application.

4.2.0
Affected by 0 other vulnerabilities.

VCID-h55b-gu47-4kfw
Aliases:
CVE-2021-27913
GHSA-x7g2-wrrp-r6h3

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) The function mt_rand is used to generate session tokens, this function is cryptographically flawed due to its nature being one pseudorandomness, an attacker can take advantage of the cryptographically insecure nature of this function to enumerate session tokens for accounts that are not under his/her control This issue affects: Mautic Mautic ;

There are no reported fixed by versions.

VCID-rtzh-qevh-r7ae
Aliases:
CVE-2025-5257
GHSA-cqx4-9vqf-q3m8

4.4.16
Affected by 0 other vulnerabilities.

5.2.6
Affected by 0 other vulnerabilities.

6.0.2
Affected by 0 other vulnerabilities.

VCID-x16f-ftqk-n3e2
Aliases:
CVE-2025-13828
GHSA-3fq7-c5m8-g86x

Mautic user without privileged access to the Marketplace can install and uninstall composer packages A non privileged user can install and remove arbitrary packages via composer for a composer based installed, even if the flag in update settings for enable composer based update is unticked.

4.4.18
Affected by 0 other vulnerabilities.

5.2.9
Affected by 0 other vulnerabilities.

6.0.7
Affected by 0 other vulnerabilities.

VCID-zb5w-5thk-audh
Aliases:
CVE-2021-27912
GHSA-rh5w-82wh-jhr8

Cross-site Scripting Mautic is vulnerable to an inline JS XSS attack when viewing Mautic assets by utilizing inline JS in the title and adding a broken image URL as a remote asset. This can only be leveraged by an authenticated user with permission to create or edit assets.

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
VCID-h55b-gu47-4kfw	Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) The function mt_rand is used to generate session tokens, this function is cryptographically flawed due to its nature being one pseudorandomness, an attacker can take advantage of the cryptographically insecure nature of this function to enumerate session tokens for accounts that are not under his/her control This issue affects: Mautic Mautic ;	CVE-2021-27913 GHSA-x7g2-wrrp-r6h3
VCID-sna2-5k9z-ayd9	Cross-site Scripting There is an XSS vulnerability on Mautic's password reset page where a vulnerable parameter `bundle` in the URL could allow an attacker to execute Javascript code. The attacker would be required to convince or trick the target into clicking a password reset URL with the vulnerable parameter utilized.	CVE-2021-27909 GHSA-32hw-3pvh-vcvc
VCID-x24q-c9vj-yucx	Cross-site Scripting Mautic is vulnerable to an inline JS XSS attack through the contact's first or last name and triggered when viewing a contact's details page then clicking on the action drop down and hovering over the Campaigns button. Contact first and last name can be populated from different sources such as UI, API, 3rd party syncing, forms, etc.	CVE-2021-27911 GHSA-72hm-fx78-xwhc
VCID-xfj5-74f4-ryfk	Cross-site Scripting Insufficient sanitization / filtering allows for arbitrary JavaScript Injection in Mautic using the bounce management callback function. An attacker with access to the bounce management callback function (identified with the Mailjet webhook, but it is assumed this will work uniformly across all kinds of webhooks) can inject arbitrary JavaScript Code into the `error` and `error_related_to` parameters of the POST request (`POST /mailer/<product / webhook>/callback`). It is noted that there is no authentication needed to access this function. The JavaScript Code is stored permanently in the web application and executed every time an authenticated user views the details page of a single contact / lead in Mautic. This means, arbitrary code can be executed to, e.g., steal or tamper with information.	CVE-2021-27910 GHSA-86pv-95mj-7w5f
VCID-zb5w-5thk-audh	Cross-site Scripting Mautic is vulnerable to an inline JS XSS attack when viewing Mautic assets by utilizing inline JS in the title and adding a broken image URL as a remote asset. This can only be leveraged by an authenticated user with permission to create or edit assets.	CVE-2021-27912 GHSA-rh5w-82wh-jhr8

Vulnerability

Summary

Aliases

VCID-h55b-gu47-4kfw

CVE-2021-27913
GHSA-x7g2-wrrp-r6h3

VCID-sna2-5k9z-ayd9

Cross-site Scripting There is an XSS vulnerability on Mautic's password reset page where a vulnerable parameter `bundle` in the URL could allow an attacker to execute Javascript code. The attacker would be required to convince or trick the target into clicking a password reset URL with the vulnerable parameter utilized.

CVE-2021-27909
GHSA-32hw-3pvh-vcvc

VCID-x24q-c9vj-yucx

Cross-site Scripting Mautic is vulnerable to an inline JS XSS attack through the contact's first or last name and triggered when viewing a contact's details page then clicking on the action drop down and hovering over the Campaigns button. Contact first and last name can be populated from different sources such as UI, API, 3rd party syncing, forms, etc.

CVE-2021-27911
GHSA-72hm-fx78-xwhc

VCID-xfj5-74f4-ryfk

Cross-site Scripting Insufficient sanitization / filtering allows for arbitrary JavaScript Injection in Mautic using the bounce management callback function. An attacker with access to the bounce management callback function (identified with the Mailjet webhook, but it is assumed this will work uniformly across all kinds of webhooks) can inject arbitrary JavaScript Code into the `error` and `error_related_to` parameters of the POST request (`POST /mailer/<product / webhook>/callback`). It is noted that there is no authentication needed to access this function. The JavaScript Code is stored permanently in the web application and executed every time an authenticated user views the details page of a single contact / lead in Mautic. This means, arbitrary code can be executed to, e.g., steal or tamper with information.

CVE-2021-27910
GHSA-86pv-95mj-7w5f

VCID-zb5w-5thk-audh

CVE-2021-27912
GHSA-rh5w-82wh-jhr8

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-31T21:34:02.517226+00:00	GHSA Importer	Fixing	VCID-h55b-gu47-4kfw	https://github.com/advisories/GHSA-x7g2-wrrp-r6h3	38.6.0
2026-05-31T21:34:02.440898+00:00	GHSA Importer	Fixing	VCID-sna2-5k9z-ayd9	https://github.com/advisories/GHSA-32hw-3pvh-vcvc	38.6.0
2026-05-31T21:34:02.366133+00:00	GHSA Importer	Fixing	VCID-xfj5-74f4-ryfk	https://github.com/advisories/GHSA-86pv-95mj-7w5f	38.6.0
2026-05-31T21:34:02.326117+00:00	GHSA Importer	Fixing	VCID-x24q-c9vj-yucx	https://github.com/advisories/GHSA-72hm-fx78-xwhc	38.6.0
2026-05-31T21:34:02.222965+00:00	GHSA Importer	Fixing	VCID-zb5w-5thk-audh	https://github.com/advisories/GHSA-rh5w-82wh-jhr8	38.6.0
2026-05-31T19:21:28.651598+00:00	GitLab Importer	Affected by	VCID-rtzh-qevh-r7ae	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/CVE-2025-5257.yml	38.6.0
2026-05-31T11:11:50.813721+00:00	GithubOSV Importer	Fixing	VCID-zb5w-5thk-audh	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/09/GHSA-rh5w-82wh-jhr8/GHSA-rh5w-82wh-jhr8.json	38.6.0
2026-05-31T11:11:49.795512+00:00	GithubOSV Importer	Fixing	VCID-x24q-c9vj-yucx	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/09/GHSA-72hm-fx78-xwhc/GHSA-72hm-fx78-xwhc.json	38.6.0
2026-05-31T11:11:42.309561+00:00	GithubOSV Importer	Fixing	VCID-h55b-gu47-4kfw	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/09/GHSA-x7g2-wrrp-r6h3/GHSA-x7g2-wrrp-r6h3.json	38.6.0
2026-05-31T11:11:40.684894+00:00	GithubOSV Importer	Fixing	VCID-sna2-5k9z-ayd9	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/09/GHSA-32hw-3pvh-vcvc/GHSA-32hw-3pvh-vcvc.json	38.6.0
2026-05-31T11:11:39.502797+00:00	GithubOSV Importer	Fixing	VCID-xfj5-74f4-ryfk	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/09/GHSA-86pv-95mj-7w5f/GHSA-86pv-95mj-7w5f.json	38.6.0
2026-05-31T01:06:05.681257+00:00	GHSA Importer	Affected by	VCID-x16f-ftqk-n3e2	https://github.com/advisories/GHSA-3fq7-c5m8-g86x	38.6.0
2026-05-31T00:55:24.230238+00:00	GHSA Importer	Affected by	VCID-1kzz-9ysf-u3d2	https://github.com/advisories/GHSA-mj6m-246h-9w56	38.6.0
2026-05-30T21:05:21.423552+00:00	GitLab Importer	Affected by	VCID-x16f-ftqk-n3e2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/CVE-2025-13828.yml	38.6.0
2026-05-30T20:57:17.062944+00:00	GitLab Importer	Affected by	VCID-1kzz-9ysf-u3d2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/GMS-2022-182.yml	38.6.0
2026-05-30T20:55:46.403443+00:00	GitLab Importer	Fixing	VCID-sna2-5k9z-ayd9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/CVE-2021-27909.yml	38.6.0
2026-05-30T20:55:46.280865+00:00	GitLab Importer	Fixing	VCID-x24q-c9vj-yucx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/CVE-2021-27911.yml	38.6.0
2026-05-30T20:55:45.876271+00:00	GitLab Importer	Affected by	VCID-zb5w-5thk-audh	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/CVE-2021-27912.yml	38.6.0
2026-05-30T20:55:45.724434+00:00	GitLab Importer	Fixing	VCID-xfj5-74f4-ryfk	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/CVE-2021-27910.yml	38.6.0
2026-05-30T20:55:45.636366+00:00	GitLab Importer	Affected by	VCID-h55b-gu47-4kfw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mautic/core/CVE-2021-27913.yml	38.6.0