Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/symfony/phpunit-bridge@2.8.0
purl pkg:composer/symfony/phpunit-bridge@2.8.0
Next non-vulnerable version 2.8.50
Latest non-vulnerable version 4.2.7
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-4mkw-tv16-jyca
Aliases:
CVE-2019-10912
GHSA-w2fr-65vp-mxw3
Deserialization of Untrusted Data In Symfony it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to.
2.8.50
Affected by 0 other vulnerabilities.
3.4.26
Affected by 0 other vulnerabilities.
4.1.12
Affected by 1 other vulnerability.
4.2.7
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:54:30.214756+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.4.0
2026-04-11T22:05:28.972551+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.3.0
2026-04-02T22:18:20.172060+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.1.0
2026-04-01T15:57:55.094719+00:00 GHSA Importer Affected by VCID-4mkw-tv16-jyca https://github.com/advisories/GHSA-w2fr-65vp-mxw3 38.0.0
2026-04-01T12:48:28.594721+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.0.0