Lucene search
MitreCVELIST:CVE-2019-11325HistoryNov 21, 2019 - 10:15 p.m.
CVE-2019-11325
2019-11-2122:15:55
mitre
www.cve.org
5
An issue was discovered in Symfony before 4.2.12 and 4.3.x before 4.3.8. The VarExport component incorrectly escapes strings, allowing some specially crafted ones to escalate to execution of arbitrary PHP code. This is related to symfony/var-exporter.
Related
osv
osv
CVE-2019-11325
2019-11-21 23:15:13
Improper Input Validation in Symfony
2020-02-12 18:44:16
symfony
symfony
CVE-2019-11325: Fix escaping of strings in VarExporter
2019-11-13 00:00:00
prion
prion
Code injection
2019-11-21 23:15:00
ubuntucve
ubuntucve
CVE-2019-11325
2019-11-21 00:00:00
friendsofphp
friendsofphp
CVE-2019-11325: Fix escaping of strings in VarExporter
2019-11-13 08:00:00
CVE-2019-11325: Fix escaping of strings in VarExporter
2019-11-13 08:00:00
nvd
nvd
CVE-2019-11325
2019-11-21 23:15:13
github
github
Improper Input Validation in Symfony
2020-02-12 18:44:16
veracode
veracode
Arbitrary Code Execution
2019-11-15 03:01:59
debiancve
debiancve
CVE-2019-11325
2019-11-21 23:15:13
cve
cve
CVE-2019-11325
2019-11-21 23:15:13
openvas
openvas
Symfony 4.2.x < 4.2.12, 4.3.x < 4.3.8 Multiple Vulnerabilities
2019-11-22 00:00:00