EPSS
Percentile
70.1%
sylius/resource-bundle is vulnerable to remote code execution (RCE). The vulnerability exists as it does not sanitize the value of $variable in ParametersParser.php.
$variable
ParametersParser.php
github.com/advisories/GHSA-p4pj-9g59-4ppv
github.com/Sylius/SyliusResourceBundle/commit/73ed8b8bb083f36c30ad7c3cec336f65d6a80650
github.com/Sylius/SyliusResourceBundle/security/advisories/GHSA-p4pj-9g59-4ppv