VulnerableCode Package Details - pkg:composer/symfony/intl@2.8.31

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-vpsz-zhhq-xfbw	An attacker can navigate to arbitrary directories via the dot-dot-slash attack This package includes various bundle readers that are used to read resource bundles from the local filesystem. The `read()` methods of these classes use a path and a locale to determine the language bundle to retrieve. The locale argument value is commonly retrieved from untrusted user input (like a `URL` parameter). An attacker can use this argument to navigate to arbitrary directories via the dot-dot-slash attack.	CVE-2017-16654 GHSA-c49r-8gj6-768r

Vulnerability

Summary

Aliases

VCID-vpsz-zhhq-xfbw

An attacker can navigate to arbitrary directories via the dot-dot-slash attack This package includes various bundle readers that are used to read resource bundles from the local filesystem. The `read()` methods of these classes use a path and a locale to determine the language bundle to retrieve. The locale argument value is commonly retrieved from untrusted user input (like a `URL` parameter). An attacker can use this argument to navigate to arbitrary directories via the dot-dot-slash attack.

CVE-2017-16654
GHSA-c49r-8gj6-768r

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T20:47:02.235605+00:00	GitLab Importer	Fixing	VCID-vpsz-zhhq-xfbw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/intl/CVE-2017-16654.yml	38.4.0
2026-04-11T21:57:53.086705+00:00	GitLab Importer	Fixing	VCID-vpsz-zhhq-xfbw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/intl/CVE-2017-16654.yml	38.3.0
2026-04-04T14:30:31.427537+00:00	GHSA Importer	Fixing	VCID-vpsz-zhhq-xfbw	https://github.com/advisories/GHSA-c49r-8gj6-768r	38.1.0
2026-04-02T22:11:14.468229+00:00	GitLab Importer	Fixing	VCID-vpsz-zhhq-xfbw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/intl/CVE-2017-16654.yml	38.1.0
2026-04-01T13:08:02.804151+00:00	GithubOSV Importer	Fixing	VCID-vpsz-zhhq-xfbw	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-c49r-8gj6-768r/GHSA-c49r-8gj6-768r.json	38.0.0
2026-04-01T12:47:54.873229+00:00	GitLab Importer	Fixing	VCID-vpsz-zhhq-xfbw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/intl/CVE-2017-16654.yml	38.0.0