Filter
AND

composer/symfony/securityCVE-2018-11407: Unauthorized access on a misconfigured LDAP server when using an empty password

First published (updated )

composer/symfony/security-coreCVE-2017-11365: Empty passwords validation issue

First published (updated )

SensioLabs SymfonyCVE-2016-2403: Unauthorized access on a misconfigured Ldap server when using an empty password

First published (updated )

composer/symfony/dependency-injectionSQL Injection

First published (updated )

composer/symfony/symfonyCode Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SensioLabs SymfonyXSS, SQL Injection

First published (updated )

SensioLabs SymfonyCVE-2019-11325: Fix escaping of strings in VarExporter

First published (updated )

composer/symfony/security-httpAuthentication granted with multiple firewalls

8.8
First published (updated )

composer/symfony/symfonyCSRF

8.8
First published (updated )

SensioLabs SymfonySymfony vulnerable to Session Fixation of CSRF tokens

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

composer/symfony/symfonyCookie persistence in Symfony

8.8
First published (updated )

SensioLabs SymfonySymfony storing cookie headers in HttpCache

8.8
First published (updated )

composer/symfony/http-kernelRCE in Symfony

8.8
First published (updated )

composer/symfony/framework-bundleCSRF token missing in Symfony

8.8
First published (updated )

composer/symfony/symfonyCVE-2018-11385: Session Fixation Issue for Guard Authentication

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

composer/symfony/security-httpFirewall configured with unanimous strategy was not actually unanimous in symfony/security-http

8.1
First published (updated )

composer/symfony/validatorInput Validation

8.1
First published (updated )

composer/symfony/symfonyCVE-2019-18887: Use constant time comparison in UriSigner

8.1
First published (updated )

SensioLabs SymfonyCVE-2019-10911: Add a separator in the remember me cookie hash

7.5
First published (updated )

SensioLabs SymfonyCSRF

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SensioLabs SymfonyCode Injection

7.5
First published (updated )

SensioLabs SymfonyCVE-2016-4423: Large username storage in session

7.5
First published (updated )

composer/symfony/symfonyPath Traversal

7.5
First published (updated )

SensioLabs SymfonyCVE-2016-1902: SecureRandom's fallback not secure when OpenSSL fails

7.5
First published (updated )

SensioLabs SymfonyCode Injection

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

composer/symfony/symfonyInput Validation

7.5
First published (updated )

SensioLabs SymfonyInput Validation

7.2
First published (updated )

composer/symfony/symfonyPossible deserialization side-effects in symfony/cache

7.1
First published (updated )

SensioLabs SymfonyCode execution vulnerability via the "internal" routes

First published (updated )

SensioLabs SymfonyCVE-2015-8124: Session Fixation in the "Remember Me" Login Feature

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203