Browse Security Advisories
Security Advisories for symfony/security-http in packagist Clear Filters
High
10 months ago
Symfony has an Authentication Bypass via RememberMe
packagist
symfony/security-http
Moderate
almost 2 years ago
Symfony possible session fixation vulnerability
packagist
symfony/symfony, symfony/security-http
High
over 3 years ago
Symphony Denial of Service Via Overlong Usernames
packagist
symfony/symfony, symfony/security, symfony/security-http
High
over 3 years ago
Symfony Vulnerable to Timing Attack
packagist
symfony/symfony, symfony/security, symfony/security-http, symfony/form
Low
over 3 years ago
Symfony Session Fixation Vulnerability
packagist
symfony/security, symfony/security-http
High
over 3 years ago
Symfony Session Fixation Vulnerability
packagist
symfony/security, symfony/security-http, symfony/symfony
High
over 3 years ago
Symfony CSRF Token Fixation
packagist
symfony/security-http, symfony/security-bundle, symfony/symfony
Moderate
over 3 years ago
Symfony Open Redirect
packagist
symfony/symfony, symfony/security, symfony/security-http
Moderate
over 4 years ago
Authentication granted to all firewalls instead of just one
packagist
symfony/symfony, symfony/security-http
Moderate
over 4 years ago
Prevent user enumeration using Guard or the new Authenticator-based Security
packagist
symfony/symfony, symfony/security, symfony/security-http, symfony/maker-bundle, lexik/jwt-authentication-bundle, symfony/security-core, symfony/security-guard
High
over 5 years ago
Improper authentication in Symfony
packagist
symfony/symfony, symfony/security, symfony/security-http
Moderate
almost 6 years ago
User enumeration leak using switch user functionality in Symfony
packagist
symfony/symfony, symfony/security-http
Filter by Severity
Filter by Ecosystem
maven
6,691
packagist
5,250
pypi
4,809
npm
4,262
go
2,837
nuget
1,602
cargo
1,065
rubygems
892
hex
38
actions
37
swift
35
pub
9
Filter by Package
moodle/moodle
417
magento/community-edition
262
typo3/cms
183
pimcore/pimcore
120
dolibarr/dolibarr
116
phpmyadmin/phpmyadmin
107
typo3/cms-core
103
microweber/microweber
103
magento/project-community-edition
98
drupal/core
97
silverstripe/framework
91
librenms/librenms
83
drupal/drupal
77
thorsten/phpmyfaq
73
concrete5/concrete5
67
symfony/symfony
61
shopware/platform
58
craftcms/cms
53
mautic/core
48
baserproject/basercms
47
shopware/core
46
nilsteampassnet/teampass
42
mantisbt/mantisbt
41
showdoc/showdoc
41
froxlor/froxlor
40
intelliants/subrion
40
snipe/snipe-it
38
zendframework/zendframework1
33
shopware/shopware
31
getgrav/grav
30
contao/core-bundle
29
mediawiki/core
28
centreon/centreon
27
prestashop/prestashop
27
pocketmine/pocketmine-mp
25
getkirby/cms
24
simplesamlphp/simplesamlphp
23
remdex/livehelperchat
23
grumpydictator/firefly-iii
23
tribalsystems/zenario
22
laravel/framework
22
contao/contao
20
zendframework/zendframework
20
funadmin/funadmin
20
typo3/cms-backend
20
cockpit-hq/cockpit
20
topthink/framework
19
phpoffice/phpexcel
18
forkcms/forkcms
18
genix/cms
18
francoisjacquet/rosariosis
17
openmage/magento-lts
17
opencart/opencart
17
cakephp/cakephp
17
ezsystems/ezpublish-kernel
17
yetiforce/yetiforce-crm
17
phpbb/phpbb
16
october/system
16
pimcore/admin-ui-classic-bundle
15
smarty/smarty
15
ec-cube/ec-cube
15
bolt/bolt
15
yeswiki/yeswiki
14
symfony/security
14
phpmailer/phpmailer
14
feehi/cms
14
codeigniter4/framework
14
modx/revolution
14
dompdf/dompdf
14
silverstripe/cms
13
lavalite/cms
13
symfony/security-http
13
elefant/cms
13
impresscms/impresscms
13
alextselegidis/easyappointments
13
phpmyfaq/phpmyfaq
13
studio-42/elfinder
13
admidio/admidio
13
sylius/sylius
12
wwbn/avideo
12
wallabag/wallabag
12
feehi/feehicms
11
pagekit/pagekit
11
leantime/leantime
11
sulu/sulu
11
nukeviet/nukeviet
11
TinyMCE
11
yiisoft/yii2
11
tinymce/tinymce
11
tinymce
11
ezsystems/ezplatform-kernel
11
ezsystems/ezpublish-legacy
10
spatie/browsershot
10
ssddanbrown/bookstack
10
october/october
10
symfony/http-foundation
10
magento/core
10
kevinpapst/kimai2
9
contao/core
9
in2code/powermail
9
concrete5/core
9
in2code/femanager
9
billz/raspap-webgui
9
statamic/cms
9
ezsystems/ezplatform-admin-ui
9
pterodactyl/panel
9
twig/twig
9
pimcore/customer-management-framework-bundle
9
croogo/croogo
9
composer/composer
8
directmailteam/direct-mail
8
starcitizentools/citizen-skin
8
flarum/core
8
facturascripts/facturascripts
8
codiad/codiad
8
gilacms/gila
8
silverstripe/admin
8
silverstripe/graphql
8
october/cms
8
joomla/joomla-cms
8
vrana/adminer
7
shopxo/shopxo
7
redaxo/source
7
wpglobus/wpglobus
7
passbolt/passbolt_api
7
tecnickcom/tcpdf
7
backdrop/backdrop
7
october/backend
7
simplesamlphp/saml2
7
unopim/unopim
7
adodb/adodb-php
6
typo3/cms-install
6
symfony/http-kernel
6
icecoder/icecoder
6
drupal/core-recommended
6
oro/platform
6
api-platform/core
6
phpseclib/phpseclib
6
phpoffice/phpspreadsheet
6
yiisoft/yii2-dev
6
zoujingli/thinkadmin
6
yourls/yourls
6
gleez/cms
6
nystudio107/craft-seomatic
6
pear/archive_tar
6
dweeves/magmi
6
bagisto/bagisto
6
org.webjars:bootstrap
5
bottelet/flarepoint
5
mautic/core-lib
5
cachethq/cachet
5
phpservermon/phpservermon
5
guzzlehttp/guzzle
5
kimai/kimai
5
gugoan/economizzer
5
typo3/flow
5
silverstripe/assets
5
phpxmlrpc/phpxmlrpc
5
ibexa/admin-ui
5
ibexa/core
5
illuminate/database
5
symfony/security-core
5
twbs/bootstrap
5
getformwork/formwork
5
limesurvey/limesurvey
5
anchorcms/anchor-cms
5
woocommerce/woocommerce
5
neos/neos
5
bootstrap
5
thinkcmf/thinkcmf
5
juzaweb/cms
5
neos/flow
5
tcg/voyager
5
elgg/elgg
5
reportico-web/reportico
4
oro/commerce
4
dcat/laravel-admin
4
pixelfed/pixelfed
4
idno/known
4
processwire/processwire
4
pyrocms/pyrocms
4
drupal/ai
4
bref/bref
4
shopware/storefront
4
appwrite/server-ce
4
bytefury/crater
4
sjbr/sr-feuser-register
4
elmsln/haxcms
4
enshrined/svg-sanitize
4
league/commonmark
4
evolutioncms/evolution
4
sylius/resource-bundle
4
livewire/livewire
4
ezsystems/ezplatform
4
symfony/security-bundle
4
ezyang/htmlpurifier
4
codeigniter4/shield
4
typo3/cms-frontend
4
codeigniter/framework
4
automad/automad
4