Lucene search
K

15 matches found

Debian
Debian
added 2019/03/10 1:19 a.m.199 views

[SECURITY] [DLA 1707-1] symfony security update

Package : symfony Version : 2.3.21+dfsg-4+deb8u4 CVE ID : CVE-2017-16652 CVE-2017-16654 CVE-2018-11385 CVE-2018-11408 CVE-2018-14773 CVE-2018-19789 CVE-2018-19790 Several security vulnerabilities have been discovered in symfony, a PHP web application framework. Numerous symfony components are...

8.1CVSS6.9AI score0.58061EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/03/10 12:0 a.m.90 views

Debian: Security Advisory (DLA-1707-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.8AI score0.58061EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.27 views

Fedora 29 : php-symfony (2018-b38a4dd0c7)

Version 2.8.49 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas Note that Tenable Network Security has extracted the preceding description block...

6.1CVSS6.4AI score0.03589EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.34 views

Fedora 28 : php-symfony (2018-8c06b6defd)

Version 2.8.49 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas Note that Tenable Network Security has extracted the preceding description block...

6.1CVSS6.4AI score0.03589EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.26 views

Fedora 29 : php-symfony4 (2018-84a1f77d89)

Version 4.1.9 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas - bug 29436 Cache Fixed Memcached adapter doClearto call flush raitocz - bug 29441...

6.1CVSS6.4AI score0.03589EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.36 views

Fedora 29 : php-symfony3 (2018-8d3a9bdff1)

Version 3.4.20 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas - bug 29436 Cache Fixed Memcached adapter doClearto call flush raitocz - bug 29441...

6.1CVSS6.4AI score0.03589EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.26 views

Fedora 28 : php-symfony4 (2018-6edf04d9d6)

Version 4.0.15 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas Note that Tenable Network Security has extracted the preceding description block...

6.1CVSS6.4AI score0.03589EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.29 views

Fedora 28 : php-symfony3 (2018-66547a8c14)

Version 3.4.20 2018-12-06 - security CVE-2018-19790 Security\Http detect bad redirect targets using backslashes @xabbuh - security CVE-2018-19789 Form Filter file uploads out of regular form types @nicolas-grekas - bug 29436 Cache Fixed Memcached adapter doClearto call flush raitocz - bug 29441...

6.1CVSS6.4AI score0.03589EPSS
Exploits0References5
OSV
OSV
added 2018/12/18 10:29 p.m.23 views

CVE-2018-19790

An open redirect was discovered in Symfony 2.7.x before 2.7.50, 2.8.x before 2.8.49, 3.x before 3.4.20, 4.0.x before 4.0.15, 4.1.x before 4.1.9 and 4.2.x before 4.2.1. By using backslashes in the failurepath input field of login forms, an attacker can work around the redirection target restrictio...

6.1CVSS6.5AI score0.01485EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2018/12/18 10:29 p.m.24 views

CVE-2018-19790

An open redirect was discovered in Symfony 2.7.x before 2.7.50, 2.8.x before 2.8.49, 3.x before 3.4.20, 4.0.x before 4.0.15, 4.1.x before 4.1.9 and 4.2.x before 4.2.1. By using backslashes in the failurepath input field of login forms, an attacker can work around the redirection target restrictio...

6.1CVSS6.7AI score0.01485EPSS
Exploits0References2
CVE
CVE
added 2018/12/18 10:0 p.m.80 views

CVE-2018-19790

CVE-2018-19790 describes an open redirect vulnerability in Symfony across multiple branches (2.7.x up to 2.7.50, 2.8.x up to 2.8.49, 3.x up to 3.4.20, 4.0.x up to 4.0.15, 4.1.x up to 4.1.9, and 4.2.x up to 4.2.1). The issue arises from using backslashes in the _failure_path input of login forms, ...

6.1CVSS6.2AI score0.01485EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2018/12/18 10:0 p.m.34 views

CVE-2018-19790

An open redirect was discovered in Symfony 2.7.x before 2.7.50, 2.8.x before 2.8.49, 3.x before 3.4.20, 4.0.x before 4.0.15, 4.1.x before 4.1.9 and 4.2.x before 4.2.1. By using backslashes in the failurepath input field of login forms, an attacker can work around the redirection target restrictio...

6.1CVSS6.5AI score0.01485EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/12/18 12:0 a.m.26 views

Fedora Update for php-symfony3 FEDORA-2018-66547a8c14

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS6.5AI score0.58061EPSS
Exploits0References2
Friends Of PHP
Friends Of PHP
added 2018/11/06 11:52 a.m.21 views

CVE-2018-19790: Open Redirect Vulnerability on login

More info at https://symfony.com/cve-2018-19790...

6.1CVSS7.2AI score0.01485EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2018/11/06 11:52 a.m.27 views

CVE-2018-19790: Open Redirect Vulnerability on login

More info at https://symfony.com/cve-2018-19790...

6.1CVSS7.2AI score0.01485EPSS
Exploits0Affected Software1
Rows per page
Query Builder