Composer Security Vulnerabilities and Issues — Composer CVE List | Vulners.com

Lucene search

Basic search
Lucene search
Search by product

K

Vulnerabilities

Perimeter Scanner

Branding Guideline

Database
Products
Getcomposer
Composer
2021
April

GetcomposerComposer

1 matches found

CVE•added 2021/04/27 9:15 p.m.•278 views

CVE-2021-29472

Composer is a dependency manager for PHP. URLs for Mercurial repositories in the root composer.json and package source download URLs are not sanitized correctly. Specifically crafted URL values allow code to be executed in the HgDriver if hg/Mercurial is installed on the system. The impact to Compo...

8.8CVSS9AI score0.03867EPSS

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2025 Vulners Inc