Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/symfony/phpunit-bridge@4.1.12
purl pkg:composer/symfony/phpunit-bridge@4.1.12
Next non-vulnerable version 4.2.7
Latest non-vulnerable version 4.2.7
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-4mkw-tv16-jyca
Aliases:
CVE-2019-10912
GHSA-w2fr-65vp-mxw3
Deserialization of Untrusted Data In Symfony it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to.
4.2.7
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-4mkw-tv16-jyca Deserialization of Untrusted Data In Symfony it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. CVE-2019-10912
GHSA-w2fr-65vp-mxw3

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:54:30.786955+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.4.0
2026-04-11T22:05:29.681807+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.3.0
2026-04-02T22:18:20.760723+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.1.0
2026-04-01T16:36:02.391430+00:00 GitLab Importer Affected by VCID-4mkw-tv16-jyca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/phpunit-bridge/CVE-2019-10912.yml 38.0.0
2026-04-01T15:57:55.613885+00:00 GHSA Importer Fixing VCID-4mkw-tv16-jyca https://github.com/advisories/GHSA-w2fr-65vp-mxw3 38.0.0
2026-04-01T13:00:07.110724+00:00 GithubOSV Importer Fixing VCID-4mkw-tv16-jyca https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/02/GHSA-w2fr-65vp-mxw3/GHSA-w2fr-65vp-mxw3.json 38.0.0