CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2018/07/09 12:0 a.m.•22 views

Fedora 27 : php-symfony3 (2018-c8ddc44bbb)

3.3.17 2018-05-25 - security cve-2018-11407 Ldap cast to string when checking empty passwords - security cve-2018-11408 SecurityBundle Fail if security.httputils cannot be configured - security cve-2018-11406 clear CSRF tokens when the user is logged out - security cve-2018-11385 migrating sessio...

9.8CVSS6.8AI score0.01086EPSS

CNVD•added 2018/06/14 12:0 a.m.•2 views

Sensio Labs Symfony Denial of Service Vulnerability (CNVD-2018-14346)

Sensio Labs Symfony is a free French Sensio Labs , based on the MVC architecture of the PHP development framework , which provides commonly used functional components and tools , can be used to quickly create complex WEB program . HttpFoundation is one of the HTTP protocol for the definition of t...

Prion•added 2018/06/13 4:29 p.m.•17 views

Exploits0References1

Hardcoded credentials

An issue was discovered in the HttpFoundation component in Symfony 2.7.x before 2.7.48, 2.8.x before 2.8.41, 3.3.x before 3.3.17, 3.4.x before 3.4.11, and 4.0.x before 4.0.11. The PDOSessionHandler class allows storing sessions on a PDO connection. Under some configurations and with a well-crafte...

4.3CVSS5.7AI score0.01086EPSS

Exploits0References5Affected Software2

UbuntuCve•added 2018/06/13 4:29 p.m.•14 views

CVE-2018-11386

OSV•added 2018/06/13 4:29 p.m.•0 views

Exploits0References5

UBUNTU-CVE-2018-11386

CVE•added 2018/06/13 4:0 p.m.•292 views

Exploits0References6

CVE-2018-11386

CVE-2018-11386 affects Symfony’s HttpFoundation PDOSessionHandler. Under certain configurations with a crafted payload, it can cause a denial of service in Symfony apps. It applies to releases older than 2.7.48, 2.8.x before 2.8.41, 3.3.x before 3.3.17, 3.4.x before 3.4.11, and 4.0.x before 4.0.1...

5.9CVSS6.2AI score0.01086EPSS

Exploits0References5Affected Software1

Cvelist•added 2018/06/13 4:0 p.m.•20 views

CVE-2018-11386

6.6AI score0.01086EPSS

Exploits0References5

Debian CVE•added 2018/06/13 4:0 p.m.•26 views

CVE-2018-11386

Symfony•added 2015/04/01 12:0 a.m.•39 views

CVE-2015-2309: Unsafe methods in the Request class

Affected Versions All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, 2.5.X, and 2.6.X versions of the Symfony HttpFoundation component are affected by this security issue. This issue has been fixed in Symfony 2.3.27, 2.5.11, and 2.6.6. Note that no fixes are provided for Symfony 2.0, 2.1, 2.2, and 2.4 as the...

6AI score

Tenable Nessus•added 2014/09/23 12:0 a.m.•30 views

Fedora 21 : php-symfony-2.5.4-1.fc21 (2014-10239)

2.5.4 2014-09-03 - security 11832 CVE-2014-6072 fabpot - security 11831 CVE-2014-5245 stof - security 11830 CVE-2014-4931 aitboudad, Jeremy Derusse - security 11829 CVE-2014-6061 damz, fabpot - security 11828 CVE-2014-5244 nicolas-grekas, larowlan - bug 10197 FrameworkBundle PhpExtractor bugfix a...

5.4AI score

Symfony•added 2014/09/03 12:0 a.m.•49 views

CVE-2014-5244: Denial of service with a malicious HTTP Host header

Affected Versions All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony HttpFoundation component are affected by this security issue. This issue has been fixed in Symfony 2.3.19, 2.4.9, and 2.5.4. Note that no fixes are provided for Symfony 2.0, 2.1, and 2.2 as they are not...

6AI score

OpenVAS•added 2013/12/17 12:0 a.m.•18 views

Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-22422

Check for the Version of php-symfony2-HttpFoundation OpenVAS Vulnerability Test Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-22422 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

5CVSS6.3AI score0.00474EPSS

OpenVAS•added 2013/12/17 12:0 a.m.•20 views

Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-22422

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.4AI score0.00474EPSS

Fedora•added 2013/12/09 2:0 a.m.•17 views

[SECURITY] Fedora 18 Update: php-symfony2-HttpFoundation-2.2.10-1.fc18

The HttpFoundation Component defines an object-oriented layer for the HTTP specification. In PHP, the request is represented by some global variables $GET, $POST, $FILE, $COOKIE, $SESSION... and the response is generated by some funct ions echo, header, setcookie, .... The Symfony2 HttpFoundation...

5CVSS0.6AI score0.00474EPSS

OpenVAS•added 2013/08/23 12:0 a.m.•23 views

Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-14579

Check for the Version of php-symfony2-HttpFoundation OpenVAS Vulnerability Test Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-14579 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

6.6AI score0.00928EPSS

OpenVAS•added 2013/08/23 12:0 a.m.•23 views

Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-14608

Check for the Version of php-symfony2-HttpFoundation OpenVAS Vulnerability Test Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-14608 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

6.6AI score0.00928EPSS

OpenVAS•added 2013/08/23 12:0 a.m.•31 views

Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-14608

6.1CVSS6.6AI score0.00928EPSS

OpenVAS•added 2013/08/23 12:0 a.m.•16 views

Fedora Update for php-symfony2-HttpFoundation FEDORA-2013-14579

6.1CVSS6.6AI score0.00928EPSS