4 matches found
CVE-2014-6072
CVE-2014-6072 concerns the Symfony WebProfiler import/export feature. The connected documents indicate a CSRF-protected form that accepts PHP-serialized profiler data, which can be crafted to inject code via unserialize, leading to potential code injection. Affected versions are Symfony WebProfil...
Fedora Update for php-symfony FEDORA-2015-9025
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : php-symfony-2.5.4-1.fc21 (2014-10239)
2.5.4 2014-09-03 - security 11832 CVE-2014-6072 fabpot - security 11831 CVE-2014-5245 stof - security 11830 CVE-2014-4931 aitboudad, Jeremy Derusse - security 11829 CVE-2014-6061 damz, fabpot - security 11828 CVE-2014-5244 nicolas-grekas, larowlan - bug 10197 FrameworkBundle PhpExtractor bugfix a...
CSRF vulnerability in the Web Profiler
More info at https://symfony.com/cve-2014-6072...