Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2020/04/01 12:0 a.m.78 views

Symfony 4.4.x < 4.4.4, 5.0.x < 5.0.4 Information Disclosure Vulnerability

Symfony is prone to an information disclosure vulnerability. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Softwa...

5.5CVSS5.3AI score0.01197EPSS
Exploits0References1
NVD
NVD
added 2020/03/30 8:15 p.m.44 views

CVE-2020-5274

In Symfony before versions 5.0.5 and 4.4.5, some properties of the Exception were not properly escaped when the ErrorHandler rendered it stacktrace. In addition, the stacktrace were displayed even in a non-debug configuration. The ErrorHandler now escape alls properties of the exception, and the...

5.5CVSS4.8AI score0.01197EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/03/30 8:15 p.m.26 views

CVE-2020-5274

In Symfony before versions 5.0.5 and 4.4.5, some properties of the Exception were not properly escaped when the ErrorHandler rendered it stacktrace. In addition, the stacktrace were displayed even in a non-debug configuration. The ErrorHandler now escape alls properties of the exception, and the...

5.5CVSS6.1AI score0.01197EPSS
Exploits0References5
Cvelist
Cvelist
added 2020/03/30 7:40 p.m.39 views

CVE-2020-5274 Exceptions displayed in non-debug configurations in Symfony

In Symfony before versions 5.0.5 and 4.4.5, some properties of the Exception were not properly escaped when the ErrorHandler rendered it stacktrace. In addition, the stacktrace were displayed even in a non-debug configuration. The ErrorHandler now escape alls properties of the exception, and the...

4.6CVSS5.2AI score0.01197EPSS
Exploits0References3
CVE
CVE
added 2020/03/30 7:40 p.m.117 views

CVE-2020-5274

The CVE-2020-5274 issue affects Symfony versions prior to 5.0.5 and 4.4.5, where the ErrorHandler did not escape all properties of exceptions in stack traces and could reveal stack traces in non-debug configurations. The vulnerability is mitigated by patching in Symfony’s http-foundation componen...

5.5CVSS4.7AI score0.01197EPSS
Exploits0References3Affected Software1
Friends Of PHP
Friends Of PHP
added 2020/03/30 2:0 p.m.40 views

CVE-2020-5274: Fix Exception message escaping rendered by ErrorHandler

More info at https://symfony.com/cve-2020-5274...

5.5CVSS7.2AI score0.01197EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2020/03/30 2:0 p.m.32 views

CVE-2020-5274: Fix Exception message escaping rendered by ErrorHandler

More info at https://symfony.com/cve-2020-5274...

5.5CVSS7.2AI score0.01197EPSS
Exploits0Affected Software1
Rows per page
Query Builder