Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist

symfony/symfony

packagist · The Symfony PHP framework · Repository · Package

High Security Advisories for symfony/symfony in packagist Clear Filters

High
11 months ago

Symfony vulnerable to command execution hijack on Windows with Process class GSA_kwCzR0hTQS1xcTVjLTY3N3AtNzM3cc4ABBBg

packagist symfony/symfony, symfony/process
High
over 1 year ago

Symfony Cross-Site Request Forgery vulnerability in the Web Profiler GSA_kwCzR0hTQS12MzVnLTRycnctaDRmd84AA8jj

packagist symfony/web-profiler-bundle, symfony/symfony
High
over 1 year ago

Symfony XML Entity Expansion security vulnerability GSA_kwCzR0hTQS1xMmdjLWdnM3gtNzk0Ms4AA8jh

packagist symfony/symfony
High
over 1 year ago

Symfony allows direct access of ESI URLs behind a trusted proxy GSA_kwCzR0hTQS13dmp2LXA1cnItbW1xbc4AA8jc

packagist symfony/symfony, symfony/http-kernel
High
over 1 year ago

Symfony vulnerable to denial of service via a malicious HTTP Host header GSA_kwCzR0hTQS12Nzd2LXg2MzQtOW01Ns4AA8jZ

packagist symfony/symfony, symfony/http-foundation
High
over 1 year ago

Code injection in the way Symfony implements translation caching in FrameworkBundle GSA_kwCzR0hTQS13ZnY3LTV4MzMtdjIyaM4AA8jX

packagist symfony/symfony, symfony/framework-bundle
High
over 3 years ago

Symfony Cryptographic Vulnerability GSA_kwCzR0hTQS1qang1LWZxNWctOHhwY84AAdU8

packagist symfony/symfony, symfony/security, symfony/security-core
High
over 3 years ago

Symphony Denial of Service Via Overlong Usernames GSA_kwCzR0hTQS13aGd2LThjZzMtN2hjbc4AAdU9

packagist symfony/symfony, symfony/security, symfony/security-http
High
over 3 years ago

Symfony Vulnerable to Timing Attack GSA_kwCzR0hTQS1nOTdjLWpmeDYteHZ4aM4AAcl9

packagist symfony/symfony, symfony/security, symfony/security-http, symfony/form
High
over 3 years ago

Symphony Vulnerable to PHP Code Injection via YAML Parsing GSA_kwCzR0hTQS0ycjVoLTZyN3YtNW03Y84AAZ6g

packagist symfony/yaml, symfony/symfony
High
over 3 years ago

Symfony Arbitrary PHP code Execution GSA_kwCzR0hTQS03dzUzLWhmcHctcmczZ84AAZ60

packagist symfony/yaml, symfony/symfony
High
over 3 years ago

Symfony Host Header Injection GSA_kwCzR0hTQS02NnA2LTdwMjktNTVwOc4AAVWh

packagist symfony/symfony
High
over 3 years ago

Symfony Session Fixation Vulnerability GSA_kwCzR0hTQS1nNHJnLXJ3NjUtOGhmZ84AAT6-

packagist symfony/security, symfony/security-http, symfony/symfony
High
over 3 years ago

Symfony Directory Traversal GSA_kwCzR0hTQS1jNDlyLThnajYtNzY4cs4AAT5H

packagist symfony/symfony, symfony/intl
High
over 3 years ago

Symfony CSRF Token Fixation GSA_kwCzR0hTQS1nNGc3LXE3MjYtdjVoZ84AATux

packagist symfony/security, symfony/security-http, symfony/security-bundle, symfony/symfony
High
over 3 years ago

Symfony collectionCascaded and collectionCascadedDeeply fields security bypass GSA_kwCzR0hTQS1xOGo3LWZqaDctMjV2Nc3gFg

packagist symfony/symfony
High
over 3 years ago

Symfony Http-Kernel has non-constant time comparison in UriSigner GSA_kwCzR0hTQS1xOGhnLXBmOHYtY3hyds02BA

packagist symfony/symfony, symfony/http-kernel
High
about 5 years ago

RCE in Symfony MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1NGgtNXIyNy03eDNy

packagist symfony/symfony, symfony/http-kernel
High
over 5 years ago

Firewall configured with unanimous strategy was not actually unanimous in Symfony MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0bTktNWhwZi1oeDcy

packagist symfony/symfony
High
over 5 years ago

Improper authentication in Symfony MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNjaHgtbWZyYy1md3Fy

packagist symfony/symfony, symfony/security, symfony/security-http
High
almost 6 years ago

Argument injection in a MimeTypeGuesser in Symfony MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhoaDYtOTU2cS00cTY5

packagist symfony/symfony, symfony/mime, symfony/http-foundation

Filter by Severity

Moderate 27 High 21 Critical 6 Low 4