friendsofsymfony/user-bundle Security Advisories for 1.2.0 (4)
-
Entropy is lost in the TokenGenerator
Affected version: >=1.2.0,<1.3.0|>=1.3.0,<1.3.5
Reported by:
FriendsOfPHP/security-advisories -
DOS attack in FOSUserBundle login form
PKSA-txzn-58cq-hc4p CVE-2013-5750
Affected version: >=1.2.0,<1.2.5|>=1.3.0,<1.3.3
Reported by:
FriendsOfPHP/security-advisories -
Fixed the user refreshing to check the identity by primary key instead of username
Affected version: >=1.2.0,<1.2.1
Reported by:
FriendsOfPHP/security-advisories -
Fixes a security issue where the session could be hijacked
Affected version: >=1.2.0,<1.2.4
Reported by:
FriendsOfPHP/security-advisories