Current section

5 Advisories

Jump to
EEF-CVE-2026-56812 CVE-2026-56812 GHSA-63mc-hw7g-86rr

Phoenix JavaScript presence client crashes on presence keys colliding with Object.prototype members in Presence.syncState/syncDiff

July 07, 2026
EEF-CVE-2026-56811 CVE-2026-56811 GHSA-6983-jfq8-485w

Phoenix transports do not limit channel joins per connection, enabling process-exhaustion denial of service

July 07, 2026
GHSA-p8f7-22gq-m7j9 CVE-2022-42975

Phoenix before 1.6.14 mishandles check_origin wildcarding

October 17, 2022
CVSS
?
7.5 / 10.0 High
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected Versions

< 1.6.14
GHSA-cmfh-8f8r-fj96 CVE-2017-1000163

Phoenix Arbitrary URL Redirect

April 12, 2022
CVSS
?
6.1 / 10.0 Medium
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Versions

< 1.0.6 >= 1.1.0 and < 1.1.8 >= 1.2.0 and < 1.2.3

Checksum

Dependency Config

mix.exs

rebar.config

Gleam

erlang.mk

Package Details

Downloads Last 30 days, all versions
0 20K 40K 60K 80K

this version

53 858

yesterday

20 462

last 7 days

300 797

all time

151 857 843

Last Updated

Jul 07, 2026

License

MIT

Build Tools

mix

Publisher

steffend steffend

Links