{"package":"ezsystems/ezpublish-kernel","ecosystem":"composer","latest_version":"v2014.11.8","description":"Kernel used by ezsystems/ezplatform and derivatives. Provides the Content Repository, its APIs, and the application's Symfony framework integration.","license":"GPL-2.0","license_risk":"strong_copyleft","commercial_use_notes":"GPL-2.0: derivative works must release source under GPL; static linking forces disclosure.","homepage":"http://share.ez.no","repository":"https://github.com/ezsystems/ezpublish-kernel","downloads_weekly":0,"health":{"score":33,"risk":"critical","breakdown":{"maintenance":0,"popularity":0,"security":15,"maturity":15,"community":3},"deprecated":false,"max_score":100},"vulnerabilities":{"count":1,"critical":1,"high":0,"medium":0,"low":0,"details":[{"vuln_id":"CVE-2020-10806","severity":"critical","summary":"eZ Publish Kernel and Legacy Unrestricted Upload of File with Dangerous Type","affected_versions":"<5.4.14.1|<5.4.14.1|>=6.0,<6.13.6.2|>=7.0,<7.5.6.2|>=2017,<2017.12.7.2|>=2019,<2019.03.4.2|=5.0.0|=5.1.0-beta2|=5.1.0-rc1|=5.1.0-stable|=5.2.0|=5.2.0-beta1|=5.2.0-rc1|=v6.0.0|=v6.0.0-alpha1|=v6.0.0-alpha2|=v6.0.0-alpha3|=v6.0.0-alpha4|=v6.0.0-alpha5|=v6.0.0-alpha6|=v6.0.0-alpha7|=v6.0.0-beta1|=v6.0.0-beta2|=v6.0.0-beta3|=v6.0.0-beta4|=v6.0.0-beta5|=v6.0.0-beta6|=v6.0.0-beta7|=v6.0.0-beta8|=v6.0.0-rc1|=v6.0.0.1|=v6.0.0.2|=v6.0.1|=v6.0.1.1|=v6.0.1.2|=v6.0.1.3|=v6.0.1.4|=v6.0.1.5|=v6.0.1.6|=v6.0.1.7|=v6.1.0|=v6.1.0-rc1|=v6.1.1|=v6.1.1.1|=v6.10.0|=v6.10.0-beta1|=v6.10.0-beta2|=v6.10.0-beta3|=v6.10.0-rc1|=v6.10.0-rc2|=v6.10.0-rc3|=v6.10.1|=v6.10.1-rc1|=v6.11.0|=v6.11.0-beta1|=v6.11.0-rc1|=v6.11.1|=v6.11.2|=v6.11.3|=v6.11.4|=v6.11.4.1|=v6.12.0|=v6.12.0-beta1|=v6.12.0-beta2|=v6.12.0-rc1|=v6.12.0.1|=v6.12.0.2|=v6.12.1|=v6.12.1-rc1|=v6.12.1-rc2|=v6.12.1-rc3|=v6.12.1-rc4|=v6.12.1.1|=v6.13.0|=v6.13.0-beta1|=v6.13.0-beta2|=v6.13.0-rc1|=v6.13.0.1|=v6.13.1|=v6.13.1-rc1|=v6.13.1.1|=v6.13.1.2|=v6.13.2|=v6.13.2-beta1|=v6.13.2-rc1|=v6.13.3|=v6.13.3-beta1|=v6.13.3-rc1|=v6.13.4|=v6.13.4-beta1|=v6.13.4-rc1|=v6.13.5|=v6.13.5.1|=v6.13.6|=v6.13.6-rc1|=v6.2.0|=v6.2.0-rc1|=v6.2.0-rc2|=v6.2.0-rc3|=v6.2.0-rc4|=v6.2.0-rc5|=v6.2.1|=v6.3.0|=v6.3.0-beta1|=v6.3.0-rc1|=v6.3.0-rc2|=v6.3.0-rc3|=v6.3.1|=v6.3.1-rc1|=v6.3.2|=v6.3.2-beta1|=v6.3.2-beta2|=v6.3.2-beta3|=v6.3.2-rc1|=v6.3.3|=v6.3.3-rc1|=v6.4.0|=v6.4.0-beta1|=v6.4.0-beta2|=v6.4.0-rc1|=v6.4.1|=v6.4.1-rc1|=v6.4.1-rc2|=v6.4.2|=v6.4.2-rc1|=v6.5.0|=v6.5.0-beta1|=v6.5.0-rc1|=v6.5.0-rc2|=v6.5.0-rc3|=v6.5.1|=v6.5.1-rc1|=v6.5.1.1|=v6.5.2|=v6.5.2-rc1|=v6.5.2-rc2|=v6.6.0|=v6.6.0-beta1|=v6.6.0-beta2|=v6.6.0-rc1|=v6.6.0-rc2|=v6.6.1|=v6.6.1-rc1|=v6.6.1-rc2|=v6.6.2|=v6.6.2-rc1|=v6.7.0|=v6.7.0-beta1|=v6.7.0-rc1|=v6.7.0.1|=v6.7.0.2|=v6.7.0.3|=v6.7.1|=v6.7.1-rc1|=v6.7.1-rc2|=v6.7.10|=v6.7.10-rc1|=v6.7.2|=v6.7.2-rc1|=v6.7.3|=v6.7.3-rc1|=v6.7.4|=v6.7.4-rc1|=v6.7.4-rc2|=v6.7.5|=v6.7.5-rc1|=v6.7.6|=v6.7.6-rc1|=v6.7.6.1|=v6.7.6.2|=v6.7.7|=v6.7.7-beta1|=v6.7.7-rc1|=v6.7.7-rc2|=v6.7.7.1|=v6.7.8|=v6.7.8-rc1|=v6.7.8-rc2|=v6.7.9|=v6.7.9.1|=v6.8.0|=v6.8.0-beta1|=v6.8.0-rc1|=v6.8.1|=v6.8.1-rc1|=v6.9.0|=v6.9.0-beta1|=v6.9.0-rc1|=v6.9.1|=v6.9.1-rc1|=v6.9.1-rc2|=v7.0.0|=v7.0.0-beta1|=v7.0.0-beta2|=v7.0.0-beta3|=v7.0.0-rc1|=v7.0.1|=v7.0.2|=v7.0.2.1|=v7.0.2.2|=v7.0.2.3|=v7.1.0|=v7.1.0-beta1|=v7.1.0-beta2|=v7.1.0-rc1|=v7.1.0-rc2|=v7.1.0.1|=v7.1.0.2|=v7.1.1|=v7.1.1-rc1|=v7.1.1.1|=v7.2.0|=v7.2.0-beta1|=v7.2.0-rc1|=v7.2.1|=v7.2.2|=v7.2.3|=v7.2.4|=v7.2.4.1|=v7.2.5|=v7.3.0|=v7.3.0-beta1|=v7.3.0-rc1|=v7.3.0-rc2|=v7.3.1|=v7.3.2|=v7.3.2.1|=v7.3.3|=v7.3.4|=v7.3.5|=v7.4.0|=v7.4.0-beta1|=v7.4.0-rc1|=v7.4.1|=v7.4.2|=v7.4.3|=v7.4.3-rc1|=v7.4.4|=v7.5.0|=v7.5.0-rc1|=v7.5.0-rc2|=v7.5.0-rc3|=v7.5.0-rc4|=v7.5.1|=v7.5.2|=v7.5.3|=v7.5.4|=v7.5.5|=v7.5.6|=v7.5.6-rc1|=v2017.08.0|=v2017.08.1|=v2017.08.1.1|=v2017.10.0|=v2017.10.0-RC1|=v2017.10.1|=v2017.12.0|=v2017.12.1|=v2017.12.1.1|=v2017.12.2|=v2017.12.2.1|=v2017.12.2.2|=v2017.12.3|=v2017.12.3.1|=v2017.12.3.2|=v2017.12.4|=v2017.12.4.1|=v2017.12.4.2|=v2017.12.4.3|=v2017.12.5|=v2017.12.6|=v2017.12.7|=v2019.03.0|=v2019.03.0-rc1|=v2019.03.0-rc2|=v2019.03.1|=v2019.03.2|=v2019.03.3|=v2019.03.4","fixed_version":"2019.03.4.2","source":"osv","published_at":"2022-05-24T17:12:08Z","in_kev":false,"epss_prob":0.02833,"epss_percentile":0.86232,"threat_tier":"theoretical"}],"actively_exploited_count":0,"likely_exploited_count":0},"versions":{"latest":"v2014.11.8","total_count":329,"recent":["v2014.11.8","v2014.11.7","v2014.11.6","v2014.11.5","v2014.11.4","v2014.11.3","v2014.11.2","v2014.11.1","v2014.11.0","v2014.07.3","v2014.07.2","v2014.07.1","v2014.07.0","v2014.05.2","v2014.05.1","v2014.05.0","v2014.03.4","v2014.03.3","v2014.03.2","v2014.03.1"]},"metadata":{"deprecated":false,"deprecated_message":null,"maintainers_count":0,"first_published":null,"last_published":"2015-01-26T07:09:46+00:00","dependencies_count":28,"dependencies":["php","ext-ctype","ext-fileinfo","ext-gd","ext-intl","ext-json","ext-mbstring","ext-pdo","ext-spl","ext-xsl","zetacomponents/mail","symfony/symfony","symfony-cmf/routing","qafoo/rmf","kriswallsmith/buzz","tedivm/stash-bundle","sensio/distribution-bundle","nelmio/cors-bundle","hautelook/templated-uri-bundle","pagerfanta/pagerfanta","doctrine/dbal","ocramius/proxy-manager","doctrine/doctrine-bundle","liip/imagine-bundle","oneup/flysystem-bundle","friendsofsymfony/http-cache-bundle","symfony/expression-language","sensio/framework-extra-bundle"]},"github_stats":{"stars":160,"forks":200,"open_issues":4,"is_archived":false,"pushed_at":"2023-12-22T10:16:07Z","subscribers_count":44},"bundle":null,"typescript":null,"known_issues":{"bugs_count":0,"bugs_severity":{},"status_breakdown":{},"link":null,"scope":"none"},"historical_compromise":null,"recommendation":{"action":"do_not_use","issues":["Low health score (33/100)","1 critical vulnerabilities"],"use_version":"v2014.11.8","version_hint":"Update to >= 2019.03.4.2 to fix known vulnerabilities","summary":"ezsystems/ezpublish-kernel has critical vulnerabilities — do not use"},"version_scoped":null,"requested_version":null,"_cache":"miss","_response_ms":687,"_powered_by":"depscope.dev — free package intelligence for AI agents","typosquat":{"is_suspected":false},"maintainer_trust":{"available":false},"malicious":{"is_malicious":false},"scorecard":{"available":false},"quality":{"available":false},"version_history_summary":{"total_versions":20,"first_release_age_days":null,"last_release_days_ago":4113,"avg_days_between_releases":null,"release_velocity":"stale"}}