symfony/form Security Advisories for v2.8.27 (2)
-
[MEDIUM] CVE-2018-19789: Temporary uploaded file path disclosure
PKSA-v18w-d8hg-6n51 CVE-2018-19789 GHSA-x3cf-w64x-4cp2
Affected version: >=2.7.38,<2.7.50|>=2.8.0,<2.8.49|>=3.0.0,<3.1.0|>=3.1.0,<3.2.0|>=3.2.0,<3.3.0|>=3.3.0,<3.4.0|>=3.4.0,<3.4.20|>=4.0.0,<4.0.15|>=4.1.0,<4.1.9|>=4.2.0,<4.2.1
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] CVE-2017-16790: Ensure that submitted data are uploaded files
PKSA-6bs3-mdg3-dvk7 CVE-2017-16790 GHSA-cqqh-94r6-wjrg
Affected version: >=2.7.0,<2.7.38|>=2.8.0,<2.8.31|>=3.0.0,<3.1.0|>=3.1.0,<3.2.0|>=3.2.0,<3.2.14|>=3.3.0,<3.3.13
Reported by:
GitHub, FriendsOfPHP/security-advisories