Friendsofphp - Page 30 of Friendsofphp Most Viewed Vulnerabilities List

Friends Of PHP•added 2012/11/27 10:21 p.m.•9 views

Request::getClientIp() when the trust proxy mode is enabled

More info at https://symfony.com/blog/security-release-symfony-2-0-19-and-2-1-4...

Friends Of PHP•added 2012/11/08 8:33 a.m.•9 views

Vulnerability in the EntityUserProvider as provided in the Doctrine bridge

More info at https://symfony.com/blog/security-release-symfony-2-0-6...

Friends Of PHP•added 2012/09/20 3:22 p.m.•9 views

Denial of Service vector via XEE injection

More info at https://framework.zend.com/security/advisory/ZF2012-02...

Friends Of PHP•added 2012/08/27 7:17 p.m.•9 views

Security fixes related to the way XML is handled

More info at https://symfony.com/blog/security-release-symfony-2-0-17-released...

Friends Of PHP•added 2012/08/27 7:17 p.m.•9 views

Security fixes related to the way XML is handled

More info at https://symfony.com/blog/security-release-symfony-2-0-17-released...

Friends Of PHP•added 2012/03/28 9:32 a.m.•9 views

Insecure Unserialize Vulnerability in FLOW3

More info at https://www.neos.io/blog/flow-sa-2012-001.html...

SQL Server LIMIT / OFFSET SQL Injection

Impact Those using SQL Server with Laravel and allowing user input to be passed directly to the limit and offset functions are vulnerable to SQL injection. Other database drivers such as MySQL and Postgres are not affected by this vulnerability. Patches This problem has been patched on Laravel...

7.9AI score

Exploit of encryption failure vulnerability

More info at https://medium.com/@taylorotwell/laravel-security-release-5-6-15-and-5-5-40-56f1257933a0...

Drupal core - Moderately critical - Third-party libraries - SA-CORE-2021-005

More info at https://www.drupal.org/sa-core-2021-005...

CVE-2026-45072: Stored XSS in WebProfiler CodeExtension::fileExcerpt(): Unescaped Non-PHP File Rendering

More info at https://symfony.com/cve-2026-45072...

5.8AI score0.00062EPSS

CVE-2026-45066: HtmlSanitizer allowLinkHosts() / allowMediaHosts() Bypass via URL-Parser Differentials and <area> Misclassification

More info at https://symfony.com/cve-2026-45066...

5.8AI score0.00048EPSS

Anonymous Open Redirect - Moderately Critical - Open Redirect

More info at https://www.drupal.org/sa-core-2018-006...

Injection in DefaultMailSystem::mail() - Critical - Remote Code Execution

More info at https://www.drupal.org/sa-core-2018-006...

Drupal core - Moderately critical - Denial of Service - SA-CORE-2019-009

More info at https://www.drupal.org/sa-core-2019-009...

Padding Oracle Vulnerability in RSA Encryption

See https://framework.zend.com/security/advisory/ZF2015-10 it's essentially the same vulnerability...

7.1AI score

Contextual Links validation - Critical - Remote Code Execution

More info at https://www.drupal.org/sa-core-2018-006...

CVE-2026-45077: Unauthenticated PHP Object Deserialization in MonologBridge server:log Listener

More info at https://symfony.com/cve-2026-45077...

5.8AI score0.01261EPSS

Friends Of PHP•added 5 days ago•8 views

symfony/ux-toolkit Path Traversal allows arbitrary file write and read via crafted recipe manifest

Description The ux:install console command installs files from a recipe kit by copying paths listed in a copy-files map. The only guard against malicious paths was Path::isRelative, which returns true for paths like ../../../etc. Path::join then resolves the .. segments without complaint, so the...

6.1AI score

Friends Of PHP•added 2026/06/09 9:6 a.m.•8 views

TYPO3-CORE-SA-2026-019: Broken Access Control in Form Framework

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-019...

7.6CVSS5.4AI score0.00238EPSS

Friends Of PHP•added 2026/06/09 8:56 a.m.•8 views

TYPO3-CORE-SA-2026-008: Broken Access Control in Form Framework

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-008...

7.6CVSS5.4AI score0.00253EPSS

Friends Of PHP•added 2026/05/29 8:0 a.m.•8 views

symfony/ux-autocomplete Information exposure via unescaped LIKE wildcards in EntitySearchUtil

Description Symfony\UX\Autocomplete\Doctrine\EntitySearchUtil::addSearchClause builds the LIKE expression used by the autocomplete endpoint by wrapping the client-supplied query in %...% without escaping the SQL LIKE wildcards %, , . The value is passed as a bound parameter, so this is not SQL...

5.9AI score

Friends Of PHP•added 2026/05/29 8:0 a.m.•8 views

symfony/ux-live-component XSS via attacker-controlled child component tag

Description Symfony\UX\LiveComponent\Util\ChildComponentPartialRenderer::createHtml interpolates the $childTag argument directly into the HTML output as a tag name, without escaping or validation. The value originates from client-controlled JSON childrenid.tag parsed by LiveComponentSubscriber an...

6AI score

Friends Of PHP•added 2026/05/20 8:0 a.m.•8 views

CVE-2026-45075: HEAD Request Bypasses methods: ['GET'] Filter in #[IsGranted] / #[IsSignatureValid] / #[IsCsrfTokenValid]

More info at https://symfony.com/cve-2026-45075...

5.8AI score0.00052EPSS

Friends Of PHP•added 2026/05/20 8:0 a.m.•8 views

CVE-2026-45075: HEAD Request Bypasses methods: ['GET'] Filter in #[IsGranted] / #[IsSignatureValid] / #[IsCsrfTokenValid]

More info at https://symfony.com/cve-2026-45075...

5.8AI score0.00052EPSS

Friends Of PHP•added 2026/05/20 8:0 a.m.•8 views

XSS in profiler HtmlDumper via unescaped template and profile names

More info at https://symfony.com/cve-2026-47730...

5.8AI score0.00037EPSS

Friends Of PHP•added 2026/05/18 2:30 p.m.•8 views

TYPO3-EXT-SA-2026-011: Path Traversal in extension "Faceted Search" (ke_search)

More info at https://typo3.org/security/advisory/typo3-ext-sa-2026-011...

5.9CVSS5.8AI score0.00404EPSS

Friends Of PHP•added 2026/05/18 2:30 p.m.•8 views

TYPO3-EXT-SA-2026-011: XML External Entity Injection in extension "Faceted Search" (ke_search)

More info at https://typo3.org/security/advisory/typo3-ext-sa-2026-011...

5.9CVSS5.8AI score0.00301EPSS

Friends Of PHP•added 2026/05/11 7:18 p.m.•8 views

TYPO3-EXT-SA-2026-008: Remote Code Execution in extension "Site Crawler" (crawler)

More info at https://typo3.org/security/advisory/typo3-ext-sa-2026-008...

7.1CVSS5.8AI score0.00389EPSS

Friends Of PHP•added 2026/04/16 2:30 a.m.•8 views

CVE-2026-24749 - DBFile permission bypass

More info at https://www.silverstripe.org/download/security-releases/cve-2026-24749...

5.3CVSS5.7AI score0.00398EPSS

Friends Of PHP•added 2021/04/06 1:30 p.m.•8 views

Regression in Query Parenthesis can have Security Implications

Return insensitive check after 8453 Problem: -andWhere"u.name = ?1 or u.username = ?1"; did not wrap part in parenthesis when or or and was written in lowercase anymore. It still worked for uppercase OR and AND. Fixes 8595...

Friends Of PHP•added 2020/09/11 2:0 p.m.•8 views

IBEXA-SA-2020-006 Object Injection in legacy shop module

More info at https://ezplatform.com/security-advisories/ibexa-sa-2020-006-object-injection-in-legacy-shop-module...

Friends Of PHP•added 2020/07/06 2:8 p.m.•8 views

Potentially sensitive data exposure

Description Impact Inside Gos\Bundle\WebSocketBundle\Server\App\Dispatcher\TopicDispatcher::onPublish, messages are arbitrarily broadcasted to the related Topic if Gos\Bundle\WebSocketBundle\Server\App\Dispatcher\TopicDispatcher::dispatch does not succeed. The dispatch method can be considered to...

1.2AI score

Friends Of PHP•added 2020/04/21 12:7 p.m.•8 views

EZSA-2020-003 XSS in DemoBundle/ezdemo bundled VideoJS

More info at https://ezplatform.com/security-advisories/ezsa-2020-003-xss-in-demobundle-ezdemo-bundled-videojs...

Friends Of PHP•added 2020/01/01 4:15 p.m.•8 views

Disclosure of files via logo_path query parameter

Require version that checks mime type...