Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2013-1348
HistoryJun 02, 2014 - 3:00 p.m.

CVE-2013-1348

2014-06-0215:00:00
mitre
www.cve.org

7.2 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

81.0%

JSON

The Yaml::parse function in Symfony 2.0.x before 2.0.22 remote attackers to execute arbitrary PHP code via a PHP file, a different vulnerability than CVE-2013-1397.

Related

cve 2
prion 2
github 2
nessus 3
fedora 3
nvd 2
cvelist 1
osv 2
symfony 1
openvas 6
veracode 2
friendsofphp 4
cve
cve
CVE-2013-1397
2014-06-02 15:55:08
CVE-2013-1348
2014-06-02 15:55:08
prion
prion
Design/Logic Flaw
2014-06-02 15:55:00
Design/Logic Flaw
2014-06-02 15:55:00
github
github
Symfony Arbitrary PHP code Execution
2022-05-17 01:36:49
Symphony Vulnerable to PHP Code Injection via YAML Parsing
2022-05-17 01:36:50
nessus
nessus
Fedora 16 : php-symfony2-Yaml-2.0.22-1.fc16 (2013-1130)
2013-01-29 00:00:00
Fedora 18 : php-symfony2-Yaml-2.1.7-1.fc18 (2013-1167)
2013-02-04 00:00:00
Fedora 17 : php-symfony2-Yaml-2.1.7-1.fc17 (2013-0985)
2013-02-04 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: php-symfony2-Yaml-2.0.22-1.fc16
2013-01-28 14:52:49
[SECURITY] Fedora 17 Update: php-symfony2-Yaml-2.1.7-1.fc17
2013-02-03 13:44:19
[SECURITY] Fedora 18 Update: php-symfony2-Yaml-2.1.7-1.fc18
2013-02-03 13:43:10
nvd
nvd
CVE-2013-1348
2014-06-02 15:55:08
CVE-2013-1397
2014-06-02 15:55:08
cvelist
cvelist
CVE-2013-1397
2014-06-02 15:00:00
osv
osv
Symphony Vulnerable to PHP Code Injection via YAML Parsing
2022-05-17 01:36:50
Symfony Arbitrary PHP code Execution
2022-05-17 01:36:49
symfony
symfony
Security release: Symfony 2.0.22 and 2.1.7 released
2013-01-17 00:00:00
openvas
openvas
Fedora Update for php-symfony2-Yaml FEDORA-2013-1130
2013-01-31 00:00:00
Fedora Update for php-symfony2-Yaml FEDORA-2013-1130
2013-01-31 00:00:00
Fedora Update for php-symfony2-Yaml FEDORA-2013-1167
2013-02-04 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2017-07-30 07:36:47
Remote Code Execution (RCE)
2017-07-30 23:05:42
friendsofphp
friendsofphp
Ability to enable/disable PHP parsing in Yaml::parse()
2013-01-15 21:16:19
Ability to enable/disable PHP parsing in Yaml::parse()
2013-01-15 21:16:19
Ability to enable/disable object support in YAML parsing and dumping
2013-01-15 21:21:51

7.2 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

81.0%

JSON
Related for CVELIST:CVE-2013-1348
cve2prion2github2nessus3fedora3nvd2cvelist1osv2symfony1openvas6veracode2friendsofphp4