Locutus: >> Locutus >> 2.0.2 Security Vulnerabilities
The package locutus before 2.0.15 are vulnerable to Regular Expression Denial of Service (ReDoS) via the gopher_parsedir function.
CVSS Score
5.3
EPSS Score
0.004
Published
2021-06-08
Versions of package locutus before 2.0.12 are vulnerable to prototype Pollution via the php.strings.parse_str function.
CVSS Score
9.8
EPSS Score
0.017
Published
2020-09-01