CVE-2019-11325
Symfony CVE-2019-11325 affects the VarExport component in Symfony versions prior to 4.2.12 and 4.3.x prior to 4.3.8. The root cause is incorrect escaping of strings in symfony/var-exporter, which could allow specially crafted inputs to execute arbitrary PHP code. Remediation: upgrade to Symfony 4...