The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of eZ Systems eZ Platform

Symfony: open redirect via Backslashes
An attacker can deceive the user via Backslashes of Symfony, in order to redirect him to a malicious site...
CVE-2018-19790, DLA-1707-1, DSA-4441-1, EZSA-2018-010, FEDORA-2018-66547a8c14, FEDORA-2018-6edf04d9d6, FEDORA-2018-84a1f77d89, FEDORA-2018-8c06b6defd, FEDORA-2018-8d3a9bdff1, FEDORA-2018-b38a4dd0c7, VIGILANCE-VUL-27979
Symfony: information disclosure via File Uploads Form Types
An attacker can bypass access restrictions to data via File Uploads Form Types of Symfony, in order to obtain sensitive information...
CVE-2018-19789, DLA-1707-1, DSA-4441-1, EZSA-2018-010, FEDORA-2018-66547a8c14, FEDORA-2018-6edf04d9d6, FEDORA-2018-84a1f77d89, FEDORA-2018-8c06b6defd, FEDORA-2018-8d3a9bdff1, FEDORA-2018-b38a4dd0c7, VIGILANCE-VUL-27978
Symfony: open redirect via Security Handlers
An attacker can deceive the user via Security Handlers of Symfony, in order to redirect him to a malicious site...
CVE-2018-11408, DLA-1707-1, EZSA-2018-004, FEDORA-2018-96d770ddc9, FEDORA-2018-ba0b683c10, FEDORA-2018-c8ddc44bbb, FEDORA-2018-eba0006df2, VIGILANCE-VUL-26250
Symfony: Cross Site Request Forgery
An attacker can trigger a Cross Site Request Forgery of Symfony, in order to force the victim to perform operations...
CVE-2018-11406, DSA-4262-1, EZSA-2018-004, FEDORA-2018-96d770ddc9, FEDORA-2018-ba0b683c10, FEDORA-2018-c8ddc44bbb, FEDORA-2018-eba0006df2, VIGILANCE-VUL-26249
Symfony: denial of service via PDOSessionHandler
An attacker can generate a fatal error via PDOSessionHandler of Symfony, in order to trigger a denial of service...
CVE-2018-11386, DSA-4262-1, EZSA-2018-004, FEDORA-2018-ba0b683c10, FEDORA-2018-c8ddc44bbb, VIGILANCE-VUL-26248
Symfony: privilege escalation via Guard Session Fixation
An attacker can bypass restrictions via Guard Session Fixation of Symfony, in order to escalate his privileges...
CVE-2018-11385, DLA-1707-1, DSA-4262-1, EZSA-2018-004, FEDORA-2018-96d770ddc9, FEDORA-2018-ba0b683c10, FEDORA-2018-c8ddc44bbb, FEDORA-2018-eba0006df2, VIGILANCE-VUL-26230
Symfony: privilege escalation via LDAP Empty Password
An attacker can bypass restrictions via LDAP Empty Password of Symfony, in order to escalate his privileges...
CVE-2018-11407, EZSA-2018-004, FEDORA-2018-c8ddc44bbb, VIGILANCE-VUL-26247
Our database contains other pages. You can request a free trial to read them.

Display information about eZ Systems eZ Platform: