6 matches found
PT-2025-22110 · Symfony · Symfony/Ux-Live-Component +1
Name of the Vulnerable Software and Affected Versions: symfony/ux-twig-component versions prior to 2.25.1 symfony/ux-live-component versions prior to 2.25.1 Description: The issue concerns the rendering of attributes or the use of methods that return a ComponentAttributes instance, which can lead...
DLA-3664-1 symfony - security update
Bulletin has no description...
Session Fixation
symfony is vulnerable to Session Fixation.The vulnerability exists due to the lack of validations in security.xml, which allows an attacker to gain unauthorized access to an account...
DSA-4573-1 symfony - security update
Bulletin has no description...
CVE-2016-4423: Large username storage in session
More info at https://symfony.com/cve-2016-4423...
Routes behind a firewall are accessible even when not logged in
More info at https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released...