symfony Latest Vulnerabilities
Latest vulnerabilities published by symfony
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Security Vulnerability in FormLoginAuthenticator Could Lead to Improper Authentication Logic Handling or Denial of Service
CVE-2024-36611SymfonyAuthentication Bypass Vulnerability in Symphony PHP Framework
CVE-2024-51996SymfonySymfony PHP FrameworkπΎπ‘HTTP URI Parsing Vulnerability in Symfony's http-foundation Module
CVE-2024-50345symfonySymfony Runtime Ignores Arguments in Non-SAPI PHP Runtimes
CVE-2024-50340SymfonyEPSS 82%π°Symfony Validator Vulnerability: Tricking Validators with `$` Metacharacters
CVE-2024-50343SymfonySymfony HTTP Client Vulnerability Allows IP/Port Enumeration
CVE-2024-50342SymfonySymfony possible session fixation vulnerability
CVE-2023-46733SymfonySymfony6.5MEDIUMSymfony potential Cross-site Scripting in WebhookController
CVE-2023-46735SymfonySymfony6.1MEDIUMSymfony potential Cross-site Scripting vulnerabilities in CodeExtension filters
CVE-2023-46734SymfonySymfony6.1MEDIUMPrevent injection of invalid entity ids for "autocomplete" fields in symfony ux-autocomplete
CVE-2023-41336SymfonyUx-autocomplete6.5MEDIUMSymfony storing cookie headers in HttpCache
CVE-2022-24894SymfonySymfony8.8HIGHSymfony vulnerable to Session Fixation of CSRF tokens
CVE-2022-24895SymfonySymfony6.3MEDIUMCSRF token missing in Symfony
CVE-2022-23601SymfonySymfony8.1HIGHCSV Injection in Symfony
CVE-2021-41270SymfonySymfony6.5MEDIUMWebcache Poisoning in Symfony
CVE-2021-41267SymfonySymfony6.5MEDIUMCookie persistence in Symfony
CVE-2021-41268SymfonySymfony6.5MEDIUMAuthentication granted with multiple firewalls
CVE-2021-32693SymfonySymfony6.8MEDIUMPrevent user enumeration using Guard or the new Authenticator-based Security
CVE-2021-21424SymfonySymfonyπΎπ‘5.3MEDIUMRCE in Symfony
CVE-2020-15094SymfonySymfony8HIGHFirewall configured with unanimous strategy was not actually unanimous in symfony/security-http
CVE-2020-5275SymfonySymfony7.6HIGHExceptions displayed in non-debug configurations in Symfony
CVE-2020-5274SymfonySymfony4.6MEDIUMPrevent cache poisoning via a Response Content-Type header
CVE-2020-5255SymfonySymfony2.6LOWSandbox Information Disclosure in Twig by Symfony
CVE-2019-9942SymfonyTwig3.7LOWServer-Side Template Injection Vulnerability in Twig by SensioLabs
CVE-2018-13818SymfonyTwig9.8CRITICALRemote Code Execution Vulnerability in Twig by Sensio Labs
CVE-2015-7809SymfonyTwig