Sensiolabs

sensiolabs

62 CVEs • 4 products

Products (4)

Click to collapse

Toggle

CVEs (62)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-5574 1Sensiolabs 1Symfony Apr 29, 2026 Dec 18, 2012 N/A· v4 N/A· v3 5.0 MEDIUM· v2 lib/form/sfForm.class.php in Symfony CMS before 1.4.20 allows remote attackers to read arbitrary files via a crafted upload request.
CVE-2012-2667 1Sensiolabs 1Symfony Apr 29, 2026 Jun 7, 2012 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Session fixation vulnerability in lib/user/sfBasicSecurityUser.class.php in SensioLabs Symfony before 1.4.18 allows remote attackers to hijack web sessions via vectors related to the regenerate method and unspecified "da...Show more Session fixation vulnerability in lib/user/sfBasicSecurityUser.class.php in SensioLabs Symfony before 1.4.18 allows remote attackers to hijack web sessions via vectors related to the regenerate method and unspecified "database backed session classes."Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2012-5574

1Sensiolabs

1Symfony

Apr 29, 2026

Dec 18, 2012

N/A· v4

N/A· v3

5.0 MEDIUM· v2

lib/form/sfForm.class.php in Symfony CMS before 1.4.20 allows remote attackers to read arbitrary files via a crafted upload request.

CVE-2012-2667

1Sensiolabs

1Symfony

Apr 29, 2026

Jun 7, 2012

N/A· v4

N/A· v3

4.3 MEDIUM· v2

Session fixation vulnerability in lib/user/sfBasicSecurityUser.class.php in SensioLabs Symfony before 1.4.18 allows remote attackers to hijack web sessions via vectors related to the regenerate method and unspecified "da...Show more

Previous 1 2 34