Homepage
About Snyk

symfony/framework-bundle vulnerabilities

  • licenses detected

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the symfony/framework-bundle package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Cross-site Request Forgery (CSRF)

>=5.3.14, <5.3.15 >=5.4.3, <5.4.4 >=6.0.3, <6.0.4
  • M
Cross-site Scripting (XSS)

>=4.2.0, <4.2.7
  • M
Cross-site Request Forgery (CSRF)

>=2.7.0, <2.7.38 >=2.8.0, <2.8.31 >=3.0.0, <3.1.0 >=3.1.0, <3.2.0 >=3.2.0, <3.2.14 >=3.3.0, <3.3.13 >=3.4-BETA0, <3.4-BETA5 >=4.0-BETA0, <4.0-BETA5
  • L
Information Exposure

>=2.3.0, <2.3.19 >=2.1.0, <2.2.0 >=2.4.0, <2.4.9 >=2.5.0, <2.5.4 >=2.2.0, <2.3.0 <2.1.0
  • M
Arbitrary Code Injection

>=2.3.0, <2.3.18 >=2.1.0, <2.2.0 >=2.4.0, <2.4.8 >=2.5.0, <2.5.2 >=2.2.0, <2.3.0 >=2.0.0, <2.1.0
  • M
Arbitrary Code Execution

>=2.1.0, <2.1.5 <2.0.20
  • M
Path Disclosure

<2.1.0