composer/composer vulnerabilities

Composer helps you declare, manage and install dependencies of PHP projects. It ensures you have the right stack everywhere.

Latest version: 2.0.13

Licenses detected

  • license: MIT >= 0
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the composer/composer package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • H
Improper Neutralization
>=2.0, <2.0.13,<1.10.22 Not available 28 Apr, 2021
  • H
Cache Injection
<=1.0.0-alpha11 Not available 10 Feb, 2016