{"url":"http://public2.vulnerablecode.io/api/packages/516564?format=json","purl":"pkg:composer/sulu/sulu@2.2.12","type":"composer","namespace":"sulu","name":"sulu","version":"2.2.12","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"1.6.44","latest_non_vulnerable_version":"3.0.6","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42846?format=json","vulnerability_id":"VCID-4s5s-49n6-dqbn","summary":"Privilege escalation in the Sulu Admin panel\n### Impact\n\nImpacted are only users which already have access to the admin UI. Over the API it was possible for them to give themselves permissions to areas which they did not already had. This issue was introduced in 2.0.0-RC1 with the new ProfileController putAction.\n\n### Patches\n\nThe versions have been patched in 2.2.18, 2.3.8 and 2.4.0.\n\n### Workarounds\n\nPatching the ProfileController of affected sulu versions yourself by overwriting it.\n\n### References\n\n_Are there any links users can visit to find out more?_\n\nCurrently not.\n\n### For more information\n\nIf you have any questions or comments about this advisory:\n* Open an issue in [sulu/sulu repo](https://github.com/sulu/sulu/issues)\n* Email us at [security@sulu.io](mailto:security@sulu.io)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43835","reference_id":"","reference_type":"","scores":[{"value":"0.00321","scoring_system":"epss","scoring_elements":"0.55366","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43835"},{"reference_url":"https://github.com/sulu/sulu","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/sulu/sulu"},{"reference_url":"https://github.com/sulu/sulu/commit/30bf8b5a4f83b6f2171a696011757d095edaa28a","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/sulu/sulu/commit/30bf8b5a4f83b6f2171a696011757d095edaa28a"},{"reference_url":"https://github.com/sulu/sulu/security/advisories/GHSA-84px-q68r-2fc9","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/sulu/sulu/security/advisories/GHSA-84px-q68r-2fc9"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43835","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43835"},{"reference_url":"https://github.com/advisories/GHSA-84px-q68r-2fc9","reference_id":"GHSA-84px-q68r-2fc9","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-84px-q68r-2fc9"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/76993?format=json","purl":"pkg:composer/sulu/sulu@2.2.18","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.2.18"},{"url":"http://public2.vulnerablecode.io/api/packages/516569?format=json","purl":"pkg:composer/sulu/sulu@2.3.0-RC1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.3.0-RC1"},{"url":"http://public2.vulnerablecode.io/api/packages/76994?format=json","purl":"pkg:composer/sulu/sulu@2.3.8","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/76997?format=json","purl":"pkg:composer/sulu/sulu@2.4.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.4.0"}],"aliases":["CVE-2021-43835","GHSA-84px-q68r-2fc9"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4s5s-49n6-dqbn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42793?format=json","vulnerability_id":"VCID-c2ct-s9ns-7khs","summary":"PHP file inclusion in the Sulu admin panel\n### Impact\n_What kind of vulnerability is it? Who is impacted?_\n\nAn attacker can read arbitrary local files via a PHP file include. In a default configuration this also leads to remote code execution.\n\n* Compromised components: Arbitrary file read on the server, (Potential) Remote code execution\n* Exploitation pre-requisite: User account on the backend\n\n### Patches\n\n_Has the problem been patched? What versions should users upgrade to?_\n\nThe problem is patched with the Versions 1.6.44, 2.2.18, 2.3.8, 2.4.0\n\n### Workarounds\n\n_Is there a way for users to fix or remediate the vulnerability without upgrading?_\n\nOverwrite the service `sulu_route.generator.expression_token_provider` and wrap the translator before passing it to the expression language. \n\n### References\n\n_Are there any links users can visit to find out more?_\n\nCurrently not.\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [example link to repo](http://example.com)\n* Email us at [example email address](mailto:example@example.com)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43836","reference_id":"","reference_type":"","scores":[{"value":"0.04292","scoring_system":"epss","scoring_elements":"0.89033","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43836"},{"reference_url":"https://github.com/sulu/sulu","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/sulu/sulu"},{"reference_url":"https://github.com/sulu/sulu/commit/9c948f9ce350c68b53af8c3910e2cefc7f722b54","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/sulu/sulu/commit/9c948f9ce350c68b53af8c3910e2cefc7f722b54"},{"reference_url":"https://github.com/sulu/sulu/security/advisories/GHSA-vx6j-pjrh-vgjh","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/sulu/sulu/security/advisories/GHSA-vx6j-pjrh-vgjh"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43836","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43836"},{"reference_url":"https://github.com/advisories/GHSA-vx6j-pjrh-vgjh","reference_id":"GHSA-vx6j-pjrh-vgjh","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vx6j-pjrh-vgjh"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/76993?format=json","purl":"pkg:composer/sulu/sulu@2.2.18","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.2.18"},{"url":"http://public2.vulnerablecode.io/api/packages/516569?format=json","purl":"pkg:composer/sulu/sulu@2.3.0-RC1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.3.0-RC1"},{"url":"http://public2.vulnerablecode.io/api/packages/76994?format=json","purl":"pkg:composer/sulu/sulu@2.3.8","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/76997?format=json","purl":"pkg:composer/sulu/sulu@2.4.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.4.0"}],"aliases":["CVE-2021-43836","GHSA-vx6j-pjrh-vgjh"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c2ct-s9ns-7khs"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/sulu/sulu@2.2.12"}