Description
A composer.lock file was discovered in this directory. Composer is a tool for dependency management in PHP. It allows you to declare the libraries your project depends on and it will manage (install/update) them for you. After installing the dependencies, Composer writes the list of the exact versions it installed into a composer.lock file. This locks the project to those specific versions.
Acunetix analyzed all the project dependencies listed in the composer.lock file and found one or more project dependencies with known vulnerabilities. It's recommended to upgrade all the vulnerable packages to the latest versions.
Remediation
Upgrade each vulnerable package to the latest version.
References
Related Vulnerabilities
WordPress Plugin Internal Links Manager Unspecified Vulnerability (2.0.1)
MySQL CVE-2024-21219 Vulnerability (CVE-2024-21219)
WordPress Plugin WP Events Calendar SQL Injection (1.0)
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-30152)
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-2922)