Vulnerabilities > Sensiolabs > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-10 | CVE-2023-46733 | Session Fixation vulnerability in Sensiolabs Symfony Symfony is a PHP framework for web and console applications and a set of reusable PHP components. | 6.5 |
| 2023-11-10 | CVE-2023-46734 | Cross-site Scripting vulnerability in Sensiolabs Symfony Symfony is a PHP framework for web and console applications and a set of reusable PHP components. | 6.1 |
| 2023-11-10 | CVE-2023-46735 | Cross-site Scripting vulnerability in Sensiolabs Symfony Symfony is a PHP framework for web and console applications and a set of reusable PHP components. | 6.1 |
| 2022-02-01 | CVE-2022-23601 | Cross-Site Request Forgery (CSRF) vulnerability in Sensiolabs Symfony Symfony is a PHP framework for web and console applications and a set of reusable PHP components. | 6.8 |
| 2021-11-24 | CVE-2021-41267 | HTTP Request Smuggling vulnerability in Sensiolabs Symfony Symfony/Http-Kernel is the HTTP kernel component for Symfony, a PHP framework for web and console applications and a set of reusable PHP components. | 4.3 |
| 2021-11-24 | CVE-2021-41268 | Session Fixation vulnerability in Sensiolabs Symfony Symfony/SecurityBundle is the security system for Symfony, a PHP framework for web and console applications and a set of reusable PHP components. | 6.5 |
| 2021-11-24 | CVE-2021-41270 | Improper Neutralization of Formula Elements in a CSV File vulnerability in multiple products Symfony/Serializer handles serializing and deserializing data structures for Symfony, a PHP framework for web and console applications and a set of reusable PHP components. | 6.5 |
| 2021-06-17 | CVE-2021-32693 | Improper Authentication vulnerability in Sensiolabs Symfony 5.3.0 Symfony is a PHP framework for web and console applications and a set of reusable PHP components. | 6.5 |
| 2021-05-13 | CVE-2021-21424 | Information Exposure vulnerability in multiple products Symfony is a PHP framework for web and console applications and a set of reusable PHP components. | 5.3 |
| 2020-03-30 | CVE-2020-5274 | Information Exposure Through an Error Message vulnerability in Sensiolabs Symfony In Symfony before versions 5.0.5 and 4.4.5, some properties of the Exception were not properly escaped when the `ErrorHandler` rendered it stacktrace. | 5.5 |