risk 30/100 · moderate

Packagist · scheb/two-factor-bundle

2 known advisories.

Risk score: 30/100

Transparent, additive — every input shown:

Worst severity: +30
Worst CVSS: +0
Exploited in the wild: +0
Exploit probability (EPSS): +0

Advisories

GHSA-9phw-7h96-q3rv — high
GHSA-h6mp-mc7g-mg49 — high

Stateward checks every dependency on every pull request and flags scheb/two-factor-bundle only if your code actually reaches the vulnerable path.

Scan my repo

Sources: CISA KEV (public domain), OSV.dev & GitHub Advisory Database (CC-BY-4.0), FIRST EPSS, NVD/CWE (public domain). Served live from the Stateward advisory database.