Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2015/07/07 12:0 a.m.27 views

Fedora Update for php-symfony FEDORA-2015-5504

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.01365EPSS
Exploits0References2
OSV
OSV
added 2015/06/24 10:59 a.m.11 views

CVE-2015-2308

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

6.8CVSS7.5AI score0.01365EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2015/06/24 10:59 a.m.31 views

CVE-2015-2308

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

6.8CVSS6.2AI score0.01365EPSS
Exploits0References1
CVE
CVE
added 2015/06/24 10:0 a.m.83 views

CVE-2015-2308

Symfony 2.x vulnerable to PHP code execution via HTTP cache HttpCache Eval injection. Affected: HttpKernel HttpCache class when ESI is enabled. Root cause: language="php" attribute in SCRIPT elements not escaped before eval(). Affected versions: Symfony 2.0.x–2.6.x with fixes in 2.3.27, 2.5.11, a...

6.8CVSS7.6AI score0.01365EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2015/06/24 10:0 a.m.30 views

CVE-2015-2308

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

6.8CVSS7.6AI score0.01365EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.34 views

Fedora Update for php-symfony FEDORA-2015-9025

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.4AI score0.08269EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.21 views

Fedora Update for php-symfony FEDORA-2015-9039

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.4AI score0.08269EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/04/22 12:0 a.m.33 views

Fedora 22 : php-symfony-2.5.11-1.fc22 (2015-5504)

2.5.11 2015-04-01 - security 14167 CVE-2015-2308 nicolas-grekas - security 14166 CVE-2015-2309 neclimdul Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...

6.8CVSS5.3AI score0.01365EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.24 views

Fedora 21 : php-symfony-2.5.11-1.fc21 (2015-5457)

2.5.11 2015-04-01 - security 14167 CVE-2015-2308 nicolas-grekas - security 14166 CVE-2015-2309 neclimdul Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...

6.8CVSS5.3AI score0.01365EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.28 views

Fedora 20 : php-symfony-2.5.11-1.fc20 (2015-5464)

2.5.11 2015-04-01 - security 14167 CVE-2015-2308 nicolas-grekas - security 14166 CVE-2015-2309 neclimdul Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...

6.8CVSS5.3AI score0.01365EPSS
Exploits0References1
Friends Of PHP
Friends Of PHP
added 2015/04/01 6:55 p.m.23 views

Esi Code Injection

More info at https://symfony.com/cve-2015-2308...

6.8CVSS7.2AI score0.01365EPSS
Exploits0Affected Software1
Rows per page
Query Builder