Learn how to report security issues - Read Ibexa's security policy - Check out our security blog posts
IBEXA-SA-2023-001: Symfony vulnerabilities - Session cookie leak, CSRF token fixation
IBEXA-SA-2022-008: The policy "taxonomy/assign" has no effect
IBEXA-SA-2022-007: Vulnerabilities in jQuery, Vue dependencies
IBEXA-SA-2022-006: Vulnerabilities in Page Builder, login, and Commerce
IBEXA-SA-2022-005: Vulnerabilities in Axios dependency
IBEXA-SA-2022-004: Ineffective object state limitation and Unauthenticated Fastly purge
IBEXA-SA-2022-003: Symfony validation messages are not escaped