Vulnerabilities > Getsymphony > Symphony > 2.7.10

DATE CVE VULNERABILITY TITLE RISK
2021-10-31 CVE-2020-25912 XXE vulnerability in Getsymphony Symphony 2.7.10
A XML External Entity (XXE) vulnerability was discovered in symphony\lib\toolkit\class.xmlelement.php in Symphony 2.7.10 which can lead to an information disclosure or denial of service (DOS).
network
low complexity
getsymphony CWE-611
6.4
6.4