On June 6, 2024, PHP released:
CVE-2024-4577: Proof of Concept Available for PHP-CGI Argument Injection Vulnerability
which augmented CVE-2012-1823. The recommended fix is to incorporate PHP 8.3.8, 8.2.20, and 8.1.29. Has Sparx upgraded WebEA to meet this CVE?