Vulnerability Bulletins

MSA-23-0050: Survey responses did not respect group settings

System information

Affected software PHP


por Michael Hawkins. Separate Groups mode restrictions were not honoured in survey response reports, which would display users from other groups.Severity/Risk:MinorVersions affected:4.3, 4.2 to 4.2.3, 4.1 to 4.1.6, 4.0 to 4.0.11, 3.11 to 3.11.17, 3.9 to 3.9.24 and earlier unsupported versionsVersions fixed:4.3.1, 4.2.4, 4.1.7, 4.0.12, 3.11.18 and 3.9.25Reported by:Leon StringerCVE identifier:CVE-2023-6667Changes

More info:

Standar resources

Property Value
CVE CVE-2023-6667.

Version history

Version Comments Date
Ministerio de Defensa