logo

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

1

Packagist

Total vulnerabilities tracked

34

From global vulnerability databases

Exclude malware
Package symfony/symfony

FLAT-NYA4F (CVE-2026-47212)

Authentication mechanism absence or evasion In symfony/symfony

4.6

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-B5WP8 (CVE-2026-45753)

Reflected cross-site scripting (XSS) In symfony/symfony

1.2

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-OCAF7 (CVE-2026-45304)

Asymmetric denial of service In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-PJBV7 (CVE-2026-45074)

Spoofing In symfony/symfony

6.6

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-M421A (CVE-2026-45071)

XML injection (XXE) In symfony/symfony

1.3

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-SUPZD (CVE-2026-45069)

Insufficient data authenticity validation In symfony/symfony

4.9

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-9UW9M (CVE-2026-45068)

Insecure functionality In symfony/symfony

6.2

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-Q59ND (CVE-2026-45065)

Asymmetric denial of service - ReDoS In symfony/symfony

1.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-0FWDE (CVE-2026-45063)

Spoofing In symfony/symfony

6.6

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-XWV0S (CVE-2026-24739)

Insecure functionality In symfony/symfony

4.1

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-XQYYE (CVE-2024-51736)

Server side template injection In symfony/symfony

6.1

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-7AF8G (GHSA-hx53-jchx-cr52)

Insecure functionality In symfony/symfony

4.6

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-FRHEW (GHSA-q2gc-gg3x-7942)

XML injection (XXE) In symfony/symfony

6.6

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-YJ9N8 (GHSA-mmcv-fvq8-r9x3)

Insecure deserialization In symfony/symfony

8.1

High

Ecosystem: Packagist

Package: symfony/symfony

FLAT-FUQOT (GHSA-7mx2-7q8p-pgmw)

Authentication mechanism absence or evasion In symfony/symfony

4.9

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-IAIKH (CVE-2014-6061)

Lack of data validation In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-PTXJE (CVE-2014-4931)

Server side template injection In symfony/symfony

6.6

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-XOV8L (CVE-2023-46735)

Server side cross-site scripting In symfony/symfony

1.3

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-R0MAH (CVE-2012-6432)

Improper authorization control for web services In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-QGQYW (CVE-2015-2308)

Server side template injection In symfony/symfony

1.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-A43UD (CVE-2015-8125)

Lack of data validation - Path Traversal In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-1NXJ4 (CVE-2015-4050)

Improper authorization control for web services In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-SNZLH (CVE-2013-1397)

Server side template injection In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-NZF0A (CVE-2018-14774)

Lack of data validation In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-YON44 (CVE-2017-16654)

Lack of data validation - Path Traversal In symfony/symfony

6.6

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-ZISAD (CVE-2018-11408)

Uncontrolled external site redirect In symfony/symfony

1.3

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-08B3N (CVE-2013-4751)

Lack of data validation In symfony/symfony

6.2

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-6K7D0 (CVE-2019-18887)

User enumeration In symfony/symfony

7.2

High

Ecosystem: Packagist

Package: symfony/symfony

FLAT-3XIK6 (CVE-2021-41268)

Session Fixation In symfony/symfony

4.9

Medium

Ecosystem: Packagist

Package: symfony/symfony

FLAT-VE6A7 (GHSA-g2qj-pmxm-9f8f)

Unauthorized access to screen In symfony/symfony

1.3

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-TQP4R (CVE-2019-11325)

OS Command Injection In symfony/symfony

8.1

High

Ecosystem: Packagist

Package: symfony/symfony

FLAT-ZLU33 (CVE-2019-18886)

User enumeration In symfony/symfony

2.7

Low

Ecosystem: Packagist

Package: symfony/symfony

FLAT-ZFUZC (CVE-2019-18889)

Server side template injection In symfony/symfony

8.1

High

Ecosystem: Packagist

Package: symfony/symfony

FLAT-INEKJ (CVE-2019-10910)

SQL injection - Code In symfony/symfony

8.1

High

Ecosystem: Packagist

Package: symfony/symfony