Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sensiolabs symfony 2.7.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-14774
An issue exists in HttpKernel in Symfony 2.7.0 up to and including 2.7.48, 2.8.0 up to and including 2.8.43, 3.3.0 up to and including 3.3.17, 3.4.0 up to and including 3.4.13, 4.0.0 up to and including 4.0.13, and 4.1.0 up to and including 4.1.2. When using HttpCache, the values...
Sensiolabs Symfony
4
CVSSv2
CVE-2018-14773
An issue exists in Http Foundation in Symfony 2.7.0 up to and including 2.7.48, 2.8.0 up to and including 2.8.43, 3.3.0 up to and including 3.3.17, 3.4.0 up to and including 3.4.13, 4.0.0 up to and including 4.0.13, and 4.1.0 up to and including 4.1.2. It arises from support for ...
Sensiolabs Symfony
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Drupal Drupal
1 Github repository
5
CVSSv2
CVE-2016-1902
The nextBytes function in the SecureRandom class in Symfony prior to 2.3.37, 2.6.x prior to 2.6.13, and 2.7.x prior to 2.7.9 does not properly generate random numbers when used with PHP 5.x without the paragonie/random_compat library and the openssl_random_pseudo_bytes function f...
Debian Debian Linux 8.0
Sensiolabs Symfony 2.7.7
Sensiolabs Symfony 2.7.6
Sensiolabs Symfony 2.7.5
Sensiolabs Symfony 2.7.4
Sensiolabs Symfony 2.6.3
Sensiolabs Symfony 2.6.2
Sensiolabs Symfony 2.6.1
Sensiolabs Symfony 2.6.0
Sensiolabs Symfony 2.6.11
Sensiolabs Symfony 2.6.10
Sensiolabs Symfony 2.6.9
Sensiolabs Symfony 2.6.8
Sensiolabs Symfony 2.7.2
Sensiolabs Symfony 2.7.0
Sensiolabs Symfony 2.6.6
Sensiolabs Symfony 2.6.4
Sensiolabs Symfony
Sensiolabs Symfony 2.7.8
Sensiolabs Symfony 2.7.3
Sensiolabs Symfony 2.7.1
Sensiolabs Symfony 2.6.12
5
CVSSv2
CVE-2016-4423
The attemptAuthentication function in Component/Security/Http/Firewall/UsernamePasswordFormAuthenticationListener.php in Symfony prior to 2.3.41, 2.7.x prior to 2.7.13, 2.8.x prior to 2.8.6, and 3.0.x prior to 3.0.6 does not limit the length of a username stored in a session, whi...
Sensiolabs Symfony 3.0.5
Sensiolabs Symfony 3.0.4
Sensiolabs Symfony 3.0.3
Sensiolabs Symfony 2.7.4
Sensiolabs Symfony 2.7.5
Sensiolabs Symfony 2.7.6
Sensiolabs Symfony 2.7.7
Sensiolabs Symfony 2.8.4
Sensiolabs Symfony 2.8.3
Sensiolabs Symfony 2.8.2
Sensiolabs Symfony 2.8.1
Sensiolabs Symfony 2.7.12
Sensiolabs Symfony
Sensiolabs Symfony 3.0.2
Sensiolabs Symfony 3.0.0
Sensiolabs Symfony 2.7.0
Sensiolabs Symfony 2.7.2
Sensiolabs Symfony 2.7.9
Sensiolabs Symfony 2.7.11
Sensiolabs Symfony 3.0.1
Sensiolabs Symfony 2.8.5
Sensiolabs Symfony 2.8.0
6.8
CVSSv2
CVE-2015-8124
Session fixation vulnerability in the "Remember Me" login feature in Symfony 2.3.x prior to 2.3.35, 2.6.x prior to 2.6.12, and 2.7.x prior to 2.7.7 allows remote malicious users to hijack web sessions via a session id.
Sensiolabs Symfony 2.3.24
Sensiolabs Symfony 2.3.33
Sensiolabs Symfony 2.3.2
Sensiolabs Symfony 2.3.8
Sensiolabs Symfony 2.3.21
Sensiolabs Symfony 2.3.7
Sensiolabs Symfony 2.3.14
Sensiolabs Symfony 2.3.12
Sensiolabs Symfony 2.3.17
Sensiolabs Symfony 2.6.6
Sensiolabs Symfony 2.6.9
Sensiolabs Symfony 2.7.3
Sensiolabs Symfony 2.7.2
Sensiolabs Symfony 2.3.27
Sensiolabs Symfony 2.3.32
Sensiolabs Symfony 2.3.19
Sensiolabs Symfony 2.3.6
Sensiolabs Symfony 2.3.4
Sensiolabs Symfony 2.3.31
Sensiolabs Symfony 2.3.5
Sensiolabs Symfony 2.3.22
Sensiolabs Symfony 2.3.10
7.5
CVSSv2
CVE-2015-8125
Symfony 2.3.x prior to 2.3.35, 2.6.x prior to 2.6.12, and 2.7.x prior to 2.7.7 might allow remote malicious users to have unspecified impact via a timing attack involving the (1) Symfony/Component/Security/Http/RememberMe/PersistentTokenBasedRememberMeServices or (2) Symfony/Comp...
Sensiolabs Symfony 2.3.6
Sensiolabs Symfony 2.3.7
Sensiolabs Symfony 2.3.14
Sensiolabs Symfony 2.3.15
Sensiolabs Symfony 2.3.22
Sensiolabs Symfony 2.3.23
Sensiolabs Symfony 2.3.31
Sensiolabs Symfony 2.3.32
Sensiolabs Symfony 2.6.4
Sensiolabs Symfony 2.6.5
Sensiolabs Symfony 2.7.0
Sensiolabs Symfony 2.7.1
Sensiolabs Symfony 2.3.3
Sensiolabs Symfony 2.3.4
Sensiolabs Symfony 2.3.5
Sensiolabs Symfony 2.3.12
Sensiolabs Symfony 2.3.13
Sensiolabs Symfony 2.3.20
Sensiolabs Symfony 2.3.21
Sensiolabs Symfony 2.3.29
Sensiolabs Symfony 2.3.30
Sensiolabs Symfony 2.6.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started