2 matches found
The vulnerability of the Intl component in the Symfony software development and web application management platform allows attackers to disclose sensitive information that should be protected.
The vulnerability of the Intl component in the Symfony software development and web application management platform exists due to an incorrect path name limitation for the restricted access directory. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by...
UBUNTU-CVE-2017-16654
An issue was discovered in Symfony before 2.7.38, 2.8.31, 3.2.14, 3.3.13, 3.4-BETA5, and 4.0-BETA5. The Intl component includes various bundle readers that are used to read resource bundles from the local filesystem. The read methods of these classes use a path and a locale to determine the...