Lucene search
K

4 matches found

OSV
OSV
added 2024/05/30 12:35 p.m.13 views

GHSA-HX53-JCHX-CR52 Symfony2 improper IP based access control

Damien Tournoud, from the Drupal security team, contacted us two days ago about a security issue in the Request::getClientIp method when the trust proxy mode is enabled Request::trustProxyData. An application is vulnerable if it uses the client IP address as returned by the Request::getClientIp...

5.9CVSS7.1AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/05/30 12:35 p.m.20 views

Symfony2 improper IP based access control

Damien Tournoud, from the Drupal security team, contacted us two days ago about a security issue in the Request::getClientIp method when the trust proxy mode is enabled Request::trustProxyData. An application is vulnerable if it uses the client IP address as returned by the Request::getClientIp...

7.1AI score
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2024/05/30 12:34 a.m.10 views

Symfony2 security issue when the trust proxy mode is enabled

An application is vulnerable if it uses the client IP address as returned by the Request::getClientIp method for sensitive decisions like IP based access control. To fix this security issue, the following changes have been made to all versions of Symfony2: A new Request::setTrustedProxies method...

7.1AI score
Exploits0References7Affected Software2
OSV
OSV
added 2024/05/30 12:34 a.m.16 views

GHSA-VFM6-R2GC-PWWW Symfony2 security issue when the trust proxy mode is enabled

An application is vulnerable if it uses the client IP address as returned by the Request::getClientIp method for sensitive decisions like IP based access control. To fix this security issue, the following changes have been made to all versions of Symfony2: A new Request::setTrustedProxies method...

7.1AI score
Exploits0References6
Rows per page
Query Builder