VulnerableCode Package Details - pkg:composer/topthink/framework@5.1.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/topthink/framework@5.1.0

purl	pkg:composer/topthink/framework@5.1.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-waa4-99wa-17an	Exposure of Resource to Wrong Sphere ThinkPHP Framework v5.0.24 was discovered to be configured without the PATHINFO parameter. This allows attackers to access all system environment parameters from index.php.	CVE-2022-25481

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:41:52.584466+00:00	GitLab Importer	Fixing	VCID-waa4-99wa-17an	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/topthink/framework/CVE-2022-25481.yml	38.6.0