symfony/symfony is vulnerable to open redirect attacks. The vulnerability exists due to the improper regex used to sanitize the request for a redirect, allowing bad redirects via backslashes, causing open redirect attacks.
CPE | Name | Operator | Version |
---|---|---|---|
symfony/symfony | le | 4.1.8 | |
symfony/symfony | le | 4.0.14 | |
symfony/symfony | le | 2.7.49 | |
symfony/symfony | le | 3.4.19 | |
symfony/symfony | le | 4.2.0 | |
symfony/symfony | le | 2.8.48 |