Lucene search
Veracode Vulnerability DatabaseVERACODE:8046HistoryDec 19, 2018 - 1:52 a.m.
Open Redirect
2018-12-1901:52:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.006 Low
EPSS
Percentile
78.4%
symfony/symfony is vulnerable to open redirect attacks. The vulnerability exists due to the improper regex used to sanitize the request for a redirect, allowing bad redirects via backslashes, causing open redirect attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| symfony/symfony | le | 4.1.8 | |
| symfony/symfony | le | 4.0.14 | |
| symfony/symfony | le | 2.7.49 | |
| symfony/symfony | le | 3.4.19 | |
| symfony/symfony | le | 4.2.0 | |
| symfony/symfony | le | 2.8.48 |
Related
cvelist
cvelist
CVE-2018-19790
2018-12-18 22:00:00
friendsofphp
friendsofphp
CVE-2018-19790: Open Redirect Vulnerability on login
2018-11-06 11:52:00
CVE-2018-19790: Open Redirect Vulnerability on login
2018-11-06 11:52:00
CVE-2018-19790: Open Redirect Vulnerability on login
2018-11-06 11:52:00
symfony
symfony
CVE-2018-19790: Open Redirect Vulnerability when using Security\Http
2018-12-06 00:00:00
nvd
nvd
CVE-2018-19790
2018-12-18 22:29:05
cve
cve
CVE-2018-19790
2018-12-18 22:29:05
ubuntucve
ubuntucve
CVE-2018-19790
2018-12-18 00:00:00
prion
prion
Open redirect
2018-12-18 22:29:00
debiancve
debiancve
CVE-2018-19790
2018-12-18 22:29:05
osv
osv
Symfony Open Redirect
2022-05-14 01:04:20
CVE-2018-19790
2018-12-18 22:29:05
symfony - security update
2019-03-09 00:00:00
github
github
Symfony Open Redirect
2022-05-14 01:04:20
nessus
nessus
Fedora 28 : php-symfony3 (2018-66547a8c14)
2019-01-03 00:00:00
Fedora 28 : php-symfony4 (2018-6edf04d9d6)
2019-01-03 00:00:00
Fedora 29 : php-symfony4 (2018-84a1f77d89)
2019-01-03 00:00:00
openvas
openvas
Symfony 2.7.x < 2.7.50, 2.8.x < 2.8.49, 3.x < 3.4.20, 4.0.x < 4.0.15, 4.x < 4.1.9, 4.2.x < 4.2.1 Multiple Vulnerabilities
2019-05-20 00:00:00
Fedora Update for php-symfony3 FEDORA-2018-8d3a9bdff1
2019-05-07 00:00:00
Fedora Update for php-symfony FEDORA-2018-b38a4dd0c7
2019-05-07 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: php-symfony-2.8.49-1.fc29
2018-12-17 19:12:55
[SECURITY] Fedora 29 Update: php-symfony4-4.1.9-1.fc29
2018-12-17 19:12:56
[SECURITY] Fedora 29 Update: php-symfony3-3.4.20-1.fc29
2018-12-17 19:12:54
debian
debian
[SECURITY] [DLA 1707-1] symfony security update
2019-03-10 01:19:23
[SECURITY] [DSA 4441-1] symfony security update
2019-05-10 06:26:19
[SECURITY] [DSA 4441-1] symfony security update
2019-05-10 06:26:19