VOOZH about

URL: https://intel.aikido.dev/packages/packagist/october/rain

⇱ october/rain - Packagist package | Aikido Intel

Package Health/october/rain

october/rain

October Rain Library

Latest v4.3.0👁 Packagist
Packagist

100%

Total Score

Dependencies
Dependencies
Evaluates the health and security of package dependencies

100

Maturity
Maturity
Indicates package age, release frequency, and adoption metrics

100

Supply Chain
Supply Chain
Evaluates supply chain security practices and risks

100

Are you affected? Scan for Free

Vulnerabilities

TitleVersionsSeverity
CVE-2026-25133
october/rain is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in versions 4.0.0 - 4.1.9 and 0.0.0 - 3.7.13.
0.0.0 - 3.7.134.0.0 - 4.1.9
Medium
CVE-2026-25125
october/rain is vulnerable to Improper Control of Generation of Code ('Code Injection') in versions 4.0.0 - 4.1.9 and 0.0.0 - 3.7.13.
0.0.0 - 3.7.134.0.0 - 4.1.9
Medium
CVE-2026-22692
october/rain is vulnerable to Improper Access Control in versions 4.0.0 - 4.1.4 and 0.0.0 - 3.7.12.
0.0.0 - 3.7.124.0.0 - 4.1.4
Medium
CVE-2017-15284
october/rain is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in versions 0.0.0 - 1.0.426.
0.0.0 - 1.0.426
Medium
CVE-2021-3311
october/rain is vulnerable to Insufficient Session Expiration in versions 0.0.0 - 1.0.472 and 1.1.0 - 1.1.2.
0.0.0 - 1.0.4721.1.0 - 1.1.2
Critical

Package versions

Maintainers

👁 Image
Alexey Bobkov
👁 Image
Samuel Georges

Direct Dependencies

DependencyLast ReleaseScore
twig/twig
Version ^3.26
league/csv
Version ~9.1
symfony/yaml
Version ^6.4|^7.0
doctrine/dbal
Version ^2.13.3|^3.1.4
laravel/tinker
Version ~2.0|~3.0

100%

Total Score

Dependencies
Dependencies
Evaluates the health and security of package dependencies

100

Maturity
Maturity
Indicates package age, release frequency, and adoption metrics

100

Supply Chain
Supply Chain
Evaluates supply chain security practices and risks

100

Are you affected? Scan for Free

Weekly Downloads

Info

Last Published
14 days ago
Created
10 years ago

Are You Affected?

Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.

Free. No credit card required.

Subscribe
Stay up to date with all updates
© 2026 Aikido Security BV | BE0792914919
Keizer Karelstraat 15, 9000, Ghent, Belgium
95 Third St, 2nd Fl, San Francisco, CA 94103, US
Unit 6.15 Runway East 18 18 Crucifix Ln, London SE1 3JW UK
Ghent, Belgium | San Francisco, US
👁 SOC 2
SOC 2Compliant
👁 ISO 27001
ISO 27001Compliant