Vulnerabilities > Sensiolabs > Symfony > 2.4.6

DATE CVE VULNERABILITY TITLE RISK
2023-11-10 CVE-2023-46734 Unspecified vulnerability in Sensiolabs Symfony
Symfony is a PHP framework for web and console applications and a set of reusable PHP components.
network
low complexity
sensiolabs
6.1
6.1
2023-02-03 CVE-2022-24894 Unspecified vulnerability in Sensiolabs Symfony
Symfony is a PHP framework for web and console applications and a set of reusable PHP components.
network
low complexity
sensiolabs
8.8
8.8
2023-02-03 CVE-2022-24895 Insufficient Session Expiration vulnerability in Sensiolabs Symfony
Symfony is a PHP framework for web and console applications and a set of reusable PHP components.
network
low complexity
sensiolabs CWE-613
8.8
8.8
2022-02-01 CVE-2022-23601 Unspecified vulnerability in Sensiolabs Symfony
Symfony is a PHP framework for web and console applications and a set of reusable PHP components.
network
low complexity
sensiolabs
8.8
8.8
2018-07-20 CVE-2017-18343 Cross-site Scripting vulnerability in Sensiolabs Symfony
The debug handler in Symfony before v2.7.33, 2.8.x before v2.8.26, 3.x before v3.2.13, and 3.3.x before v3.3.6 has XSS via an array key during exception pretty printing in ExceptionHandler.php, as demonstrated by a /_debugbar/open?op=get URI.
network
low complexity
sensiolabs CWE-79
6.1
6.1