6 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-46734
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in versions 2.0.0, 5.0.0, and 6.0.0 and prior to...
CVE-2023-46734
creationtimestamp| type| source ---|---|--- 2025-02-16 10:21:41+00:00| seen| https://gist.github.com/Rudloff/8465a35eb53f45f83311ad2230e8c0cb...
CVE-2023-46734
Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in versions 2.0.0, 5.0.0, and 6.0.0 and prior to versions 4.4.51, 5.4.31, and 6.3.8, some Twig filters in CodeExtension use issafe=html but don't actually ensure their input is safe. As of...
CVE-2023-46734
Symphony PHP framework vulnerability CVE-2023-46734: Some Twig filters in CodeExtension used is_safe=html without proper sanitization, allowing unsafe input. Affected versions: 2.0.0, 5.0.0, 6.0.0 and prior to 4.4.51, 5.4.31, 6.3.8. Fixes are in 4.4.51, 5.4.31, and 6.3.8 where output is now escap...
CVE-2023-46734: Potential XSS vulnerabilities in CodeExtension filters
Affected versions Symfony versions =2.0.0,4.4.51, =5.0.0,5.4.31, and =6.0.0,6.3.8 of the Symfony Twig Bridge are affected by this security issue. The issue has been fixed in Symfony 4.4.51, 5.4.31, 6.3.8. All other versions are not maintained anymore. Description Some filters in the CodeExtension...
CVE-2023-46734: Potential XSS vulnerabilities in CodeExtension filters
More info at https://symfony.com/cve-2023-46734...