Lucene search
K

4 matches found

CNVD
CNVD
added 2018/06/19 12:0 a.m.5 views

Sensio Labs Symfony Web profiler Cross-Site Scripting Vulnerability

Sensio Labs Symfony is a French company Sensio Labs free , MVC-based PHP development framework , which provides commonly used functional components and tools , can be used to quickly create complex Web programs . Web profiler is one of the Symfony configuration management components . A cross-sit...

6.1CVSS5.8AI score0.01315EPSS
Exploits2References1
OSV
OSV
added 2018/06/13 10:29 p.m.2 views

UBUNTU-CVE-2018-12040

DISPUTED Reflected Cross-site scripting XSS vulnerability in the web profiler in SensioLabs Symfony 3.3.6 allows remote attackers to inject arbitrary web script or HTML via the "file" parameter, aka an profiler/open?file= URI. NOTE: The vendor states "The XSS ... is in the web profiler, a tool th...

6.1CVSS5.9AI score0.01315EPSS
Exploits2References4
Cvelist
Cvelist
added 2018/06/13 10:0 p.m.25 views

CVE-2018-12040

Reflected Cross-site scripting XSS vulnerability in the web profiler in SensioLabs Symfony 3.3.6 allows remote attackers to inject arbitrary web script or HTML via the "file" parameter, aka an profiler/open?file= URI. NOTE: The vendor states "The XSS ... is in the web profiler, a tool that should...

6AI score0.01315EPSS
Exploits2References2
Debian CVE
Debian CVE
added 2018/06/13 10:0 p.m.26 views

CVE-2018-12040

Reflected Cross-site scripting XSS vulnerability in the web profiler in SensioLabs Symfony 3.3.6 allows remote attackers to inject arbitrary web script or HTML via the "file" parameter, aka an profiler/open?file= URI. NOTE: The vendor states "The XSS ... is in the web profiler, a tool that should...

6.1CVSS6AI score0.01315EPSS
Exploits2
Rows per page
Query Builder