143 matches found
Direct access of ESI URLs behind a trusted proxy
More info at https://symfony.com/cve-2014-5245...
Direct access of ESI URLs behind a trusted proxy
More info at https://symfony.com/cve-2014-5245...
CVE-2014-5245: Direct access of ESI URLs behind a trusted proxy
Affected Versions All 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony HttpKernel component are affected by this security issue. Your application is vulnerable only if the ESI feature is enabled and there is a proxy in front of the web application. This issue has been fixed in Symfony 2.3.1...