Friendsofphp - Page 31 of Friendsofphp Most Viewed Vulnerabilities List

CVE-2026-45304: YAML Parser Exponential Memory Allocation via Recursive Collection-Alias Expansion ("Billion Laughs")

More info at https://symfony.com/cve-2026-45304...

5.8AI score0.00076EPSS

Contextual Links validation - Critical - Remote Code Execution

More info at https://www.drupal.org/sa-core-2018-006...

Drupal core - Critical - Multiple vulnerabilities - SA-CORE-2019-012

More info at https://www.drupal.org/sa-core-2019-012...

Drupal core - Moderately critical - Third-party library - SA-CORE-2020-001

More info at https://www.drupal.org/sa-core-2020-001...

Drupal core - Moderately critical - Denial of Service - SA-CORE-2019-009

More info at https://www.drupal.org/sa-core-2019-009...

CVE-2026-45064: HtmlSanitizer URL Attributes Pass Through BiDi Override Characters → Visual href Spoofing

More info at https://symfony.com/cve-2026-45064...

5.8AI score0.00069EPSS

Signature validation bypass

More info at https://simplesamlphp.org/security/201710-01...

Friends Of PHP•added 5 days ago•7 views

symfony/ux-icons XSS via unsanitized SVG content in local files and Iconify on-demand responses

Description The uxicon Twig function is marked issafe='html', so Twig never escapes its output. Icon::toHtml inlines the SVG source verbatim into the page. Browsers execute elements and on event-handler attributes found inside inline SVG, making any unsanitized icon a vector for cross-site...

6AI score

Friends Of PHP•added 2026/06/09 9:3 a.m.•7 views

TYPO3-CORE-SA-2026-018: Insecure Deserialization in Core API

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-018...

6.3CVSS5.4AI score0.00215EPSS

Friends Of PHP•added 2026/06/09 9:1 a.m.•7 views

TYPO3-CORE-SA-2026-015: Broken Access Control in Backend API

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-015...

5.3CVSS5.4AI score0.00238EPSS

Friends Of PHP•added 2026/06/09 9:0 a.m.•7 views

TYPO3-CORE-SA-2026-014: Broken Access Control in Clipboard

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-014...

5.3CVSS5.4AI score0.00238EPSS

Friends Of PHP•added 2026/06/09 8:59 a.m.•7 views

TYPO3-CORE-SA-2026-013: Broken Access Control in Media Module

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-013...

7.1CVSS5.4AI score0.00313EPSS

Friends Of PHP•added 2026/06/09 8:58 a.m.•7 views

TYPO3-CORE-SA-2026-012: Broken Access Control in DataHandler

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-012...

5.3CVSS5.4AI score0.00238EPSS

Friends Of PHP•added 2026/06/08 8:0 p.m.•7 views

TYPO3-CORE-SA-2026-006: TYPO3 HTML Sanitizer allows Cross-Site Scripting

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-006...

2.1CVSS5.4AI score0.00282EPSS

Friends Of PHP•added 2026/06/06 4:30 p.m.•7 views

JWSVerifier uses algorithm from unprotected header, enabling algorithm confusion attacks

Summary JWSVerifier::getAlgorithm in src/Library/Signature/JWSVerifier.php line 144 merges protected and unprotected headers using PHP's spread operator: php $completeHeader = ...$signature-getProtectedHeader, ...$signature-getHeader; In PHP, when spreading arrays with duplicate string keys, the...

5.4AI score

Friends Of PHP•added 2026/05/26 8:0 a.m.•7 views

CVE-2026-48736: IpUtils::PRIVATE_SUBNETS Omits IPv6 Transition Forms (6to4, NAT64, Teredo, IPv4-compatible): SSRF Bypass in NoPrivateNetworkHttpClient

More info at https://symfony.com/cve-2026-48736...

5.8AI score0.00029EPSS

Friends Of PHP•added 2026/05/25 10:58 p.m.•7 views

Host confusion via authority reinterpretation

Impact guzzlehttp/psr7 improperly interpreted malformed Host header values when constructing request URIs from inbound request data. This issue concerns inbound request parsing and server request construction. It does not require serializing a PSR-7 request, and it is not part of the normal...

5.3CVSS5.9AI score0.00198EPSS