Policy of CVE Tracker

Thank you for useful CVE tracker, core team!

However, I couldn’t find the Guzzle issue on the list. Is there any policy on which issue is listed or not?

Hi @hissy If the issue has a Concrete CMS CVE, it should be on the list. The Guzzle update done in release 9.2.2 and 8.5.13 was in response to a Guzzle vulnerability ; CVE-2023-29197 is attributed to Guzzle.

I understand the policy. Thank you!