Information Disclosure

sylius/sylius is vulnerable to information disclosure. The vulnerability exists as the internal exception message gets exposed in the login action through the value of lasterror.message in Security/login.html.twig...