EOLCanaryEOLCanary
Explore

Cakephp 2.x — End of Life

EOL
EOL: Jun 15, 202111 releases in this series0 CVEs

Cakephp 2.x — All releases

VersionReleasedActive supportEOL dateLatest patchStatus
2.10Jul 22, 2017Dec 15, 2020Jun 15, 20212.10.24EOL
2.9Sep 18, 2016Yes2.9.9EOL
2.8Feb 6, 2016Yes2.8.9EOL
2.7Jul 11, 2015Yes2.7.11EOL
2.6Dec 23, 2014Yes2.6.13EOL
2.5May 12, 2014Yes2.5.9EOL
2.4Aug 30, 2013Yes2.4.10EOL
2.3Jan 28, 2013Yes2.3.10EOL
2.2Jul 1, 2012Yes2.2.9EOL
2.1Mar 4, 2012Yes2.1.5EOL
2.0Oct 16, 2011Yes2.0.6EOL

CVEs affecting Cakephp 2.x (0)

No CVEs tracked for Cakephp 2.x.

Cakephp 2.x is EOL — migrate to Cakephp 3.x

Cakephp 3.x is the next major release. Plan your upgrade before Cakephp 2.x stops receiving security patches.

See Cakephp 3.x

Frequently asked questions

Is Cakephp 2 end of life?

Yes. All Cakephp 2.x releases have reached end of life and no longer receive security patches. Migrate to Cakephp 3.x as soon as possible.

What CVEs affect Cakephp 2?

No CVEs are currently tracked for Cakephp 2.x in our database. This may mean no vulnerabilities have been recorded yet, or the data is still syncing.

What is the latest Cakephp 2 version?

The latest Cakephp 2.x patch release is 2.10.24, released on December 15, 2020. Always run the latest patch to benefit from all security fixes.

How to migrate from Cakephp 2 to Cakephp 3?

To migrate from Cakephp 2 to Cakephp 3: (1) review the official Cakephp 3 migration guide for breaking changes, (2) update dependencies and configuration accordingly, (3) test thoroughly in a staging environment, (4) deploy with a rollback plan. Starting early gives you time to resolve compatibility issues before your current version reaches end of life.

Is it safe to run Cakephp 2 in production?

No. Cakephp 2 has reached end of life and security vulnerabilities are no longer patched. Upgrade to a supported version immediately.

Data sourced from endoflife.date · CVE data from NVD · EPSS from FIRST.org · KEV from CISA