Lucene search
Veracode Vulnerability DatabaseVERACODE:47302HistoryMay 31, 2024 - 10:47 a.m.
Code Injection
2024-05-3110:47:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
code injection
symfony
csrf protection
import/export
php serialized string
AI Score
6.9
Confidence
Low
symfony is vulnerable to Code Injection. The vulnerability is due to lack of CSRF protection for the import/export feature, allowing attackers to exploit the PHP serialized string import.
Related
friendsofphp
friendsofphp
CSRF vulnerability in the Web Profiler
2014-09-03 07:40:30
CSRF vulnerability in the Web Profiler
2014-09-03 07:40:30
github
github
Symfony Cross-Site Request Forgery vulnerability in the Web Profiler
2024-05-30 13:00:01
cve
cve
CVE-2014-6072
2023-01-29 20:37:01
osv
osv
Symfony Cross-Site Request Forgery vulnerability in the Web Profiler
2024-05-30 13:00:01
symfony
symfony
CVE-2014-6072: CSRF vulnerability in the Web Profiler
2014-09-03 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: php-symfony-2.5.4-1.fc21
2014-09-23 04:24:16
[SECURITY] Fedora 20 Update: php-symfony-2.5.11-1.fc20
2015-04-18 09:30:28
[SECURITY] Fedora 20 Update: php-symfony-2.5.12-1.fc20
2015-06-05 23:49:57
nessus
nessus
Fedora 21 : php-symfony-2.5.4-1.fc21 (2014-10239)
2014-09-23 00:00:00
openvas
openvas
Fedora Update for php-symfony FEDORA-2015-5464
2015-04-19 00:00:00
Fedora Update for php-symfony FEDORA-2015-9025
2015-06-09 00:00:00