Lucene search
K

8 matches found

NVD
NVD
added 2023/11/10 6:15 p.m.27 views

CVE-2023-46735

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in WebhookController returns unescaped user-submitted input. As of version 6.3.8, WebhookController now doesn't return any...

6.1CVSS0.00568EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/11/10 6:15 p.m.41 views

CVE-2023-46735

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in WebhookController returns unescaped user-submitted input. As of version 6.3.8, WebhookController now doesn't return any...

6.1CVSS6.3AI score0.00568EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/11/10 5:58 p.m.14 views

CVE-2023-46735 Symfony potential Cross-site Scripting in WebhookController

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in WebhookController returns unescaped user-submitted input. As of version 6.3.8, WebhookController now doesn't return any...

6.1CVSS6.8AI score0.00568EPSS
Exploits0References2
CVE
CVE
added 2023/11/10 5:58 p.m.70 views

CVE-2023-46735

CVE-2023-46735 concerns the Symfony PHP framework. From version 6.0.0 up to, but not including, 6.3.8, the error message in WebhookController exposed unescaped user-submitted input in responses. As of 6.3.8, Symfony’s WebhookController no longer returns any user-submitted input in its response, m...

6.1CVSS6.2AI score0.00568EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/10 5:58 p.m.31 views

CVE-2023-46735 Symfony potential Cross-site Scripting in WebhookController

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in WebhookController returns unescaped user-submitted input. As of version 6.3.8, WebhookController now doesn't return any...

6.1CVSS6.5AI score0.00568EPSS
Exploits0References2
Friends Of PHP
Friends Of PHP
added 2023/11/10 8:0 a.m.32 views

CVE-2023-46735: Potential XSS in WebhookController

More info at https://symfony.com/cve-2023-46735...

6.1CVSS7.2AI score0.00568EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2023/11/10 8:0 a.m.44 views

CVE-2023-46735: Potential XSS in WebhookController

More info at https://symfony.com/cve-2023-46735...

6.1CVSS7.2AI score0.00568EPSS
Exploits0Affected Software1
Symfony
Symfony
added 2023/11/10 12:0 a.m.73 views

CVE-2023-46735: Potential XSS in WebhookController

Affected versions Symfony versions =6.3.0, 6.3.8 of the Symfony Webhook component are affected by this security issue. The issue has been fixed in Symfony 6.3.8. Description The error message in WebhookController returns unescaped user-submitted input. Resolution WebhookController now doesn't...

6.1CVSS6AI score0.00568EPSS
Exploits0
Rows per page
Query Builder