Topthink/thinkphp
This hub aggregates every CVE we track for Topthink/thinkphp, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
2
CVEs tracked
2
Critical
0
High
0
In CISA KEV
Severity distribution
CRITICAL2
Monthly trend
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 2 most recently published vulnerabilities affecting Topthink/thinkphp.
- CVE-2024-48112A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.9.8
- CVE-2020-20120ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods.9.8
Product normalization is registry-driven with AI assist and human review. How it works