High Security Advisories for symfony/symfony in packagist Clear Filters
High
21 days ago
Symfony's incorrect parsing of PATH_INFO can lead to limited authorization bypass
packagist
symfony/symfony, symfony/http-foundation
High
about 1 year ago
Symfony vulnerable to command execution hijack on Windows with Process class
packagist
symfony/symfony, symfony/process
High
over 1 year ago
Symfony Cross-Site Request Forgery vulnerability in the Web Profiler
packagist
symfony/web-profiler-bundle, symfony/symfony
High
over 1 year ago
Symfony allows direct access of ESI URLs behind a trusted proxy
packagist
symfony/symfony, symfony/http-kernel
High
over 1 year ago
Symfony vulnerable to denial of service via a malicious HTTP Host header
packagist
symfony/symfony, symfony/http-foundation
High
over 1 year ago
Code injection in the way Symfony implements translation caching in FrameworkBundle
packagist
symfony/symfony, symfony/framework-bundle
High
over 3 years ago
Symfony Cryptographic Vulnerability
packagist
symfony/symfony, symfony/security, symfony/security-core
High
over 3 years ago
Symphony Denial of Service Via Overlong Usernames
packagist
symfony/symfony, symfony/security, symfony/security-http
High
over 3 years ago
Symfony Vulnerable to Timing Attack
packagist
symfony/symfony, symfony/security, symfony/security-http, symfony/form
High
over 3 years ago
Symphony Vulnerable to PHP Code Injection via YAML Parsing
packagist
symfony/yaml, symfony/symfony
High
over 3 years ago
Symfony Http-Kernel has non-constant time comparison in UriSigner
packagist
symfony/symfony, symfony/http-kernel
High
almost 6 years ago
Improper authentication in Symfony
packagist
symfony/symfony, symfony/security, symfony/security-http
High
almost 6 years ago
Deserialization of untrusted data in Symfony
packagist
symfony/symfony, symfony/phpunit-bridge, symfony/cache
High
about 6 years ago
Argument injection in a MimeTypeGuesser in Symfony
packagist
symfony/symfony, symfony/mime, symfony/http-foundation