3 matches found
CVE-2017-16790
Symfony reported vulnerability CVE-2017-16790 affects the Form component where POST data and uploaded files are merged, allowing a crafted request to cause a file path (e.g., file:///etc/passwd) to be interpreted as a local file path and potentially expose server contents. The issue affects Symfo...
CVE-2017-16790: Ensure that submitted data are uploaded files
More info at https://symfony.com/cve-2017-16790...
CVE-2017-16790: Ensure that submitted data are uploaded files
More info at https://symfony.com/cve-2017-16790...