Security Advisories - PKSA-ftqt-8gzv-r53t - Packagist

PKSA-ftqt-8gzv-r53t Security Advisory

[MEDIUM] CVE-2021-41267: Webcache Poisoning via X-Forwarded-Prefix and sub-request

PKSA-ftqt-8gzv-r53t CVE-2021-41267 GHSA-q3j3-w37x-hq2q

Affected package: symfony/http-kernel

Affected version: >=5.2.0,<5.3.0|>=5.3.0,<5.3.12

Reported by:
GitHub, FriendsOfPHP/security-advisories