Lucene search
K

4 matches found

NVD
NVD
added 2 days ago4 views

CVE-2026-48489

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 5.4.53, 6.4.41, 7.4.13, and 8.0.13, DefaultAuthenticationFailureHandler honored the request-supplied failurepath parameter when failureforward: true was enabled, allowing an unauthenticated...

8.7CVSS0.00487EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.10 views

CVE-2026-30653

An issue in Free5GC v.4.2.0 and before allows a remote attacker to cause a denial of service via the function HandleAuthenticationFailure of the component AMF...

7.5CVSS5.7AI score0.00392EPSS
Exploits1References1
Snyk
Snyk
added 2026/03/24 4:35 p.m.1 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the HandleAuthenticationFailure function of the AMF component. An attacker can cause the service to become unavailable by sending specially crafted requests remotely. Details Denial of Service DoS describes a...

8.7CVSS5.8AI score0.00392EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/10 9:27 p.m.3 views

CVE-2026-31822 Sylius has a XSS vulnerability in checkout login form

Sylius is an Open Source eCommerce Framework on Symfony. A cross-site scripting XSS vulnerability exists in the shop checkout login form handled by the ApiLoginController Stimulus controller. When a login attempt fails, AuthenticationFailureHandler returns a JSON response whose message field is...

5.3CVSS5.7AI score0.00179EPSS
Exploits0References1
Rows per page
Query Builder