Search by 
symfony/web-profiler-bundle Security Advisories for 7.3.x-dev (1)
-
CVE-2026-45072: Stored XSS in WebProfiler CodeExtension::fileExcerpt(): Unescaped Non-PHP File Rendering
PKSA-rg9h-crk2-m8zt CVE-2026-45072
Affected version: >=7.2.9,<7.3.0|>=7.3.0,<7.4.0|>=7.4.0,<7.4.12|>=8.0.0,<8.0.12
Reported by:
FriendsOfPHP/security-advisories