Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/symfony/security@2.7.50
purl pkg:composer/symfony/security@2.7.50
Next non-vulnerable version 2.7.51
Latest non-vulnerable version 4.4.24
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-bpkv-qrmp-huac
Aliases:
CVE-2019-10911
GHSA-cchx-mfrc-fwqr
Improper Authentication In Symfony, a vulnerability would allow an attacker to authenticate as a privileged user on sites with user registration and remember me login functionality enabled.
2.7.51
Affected by 0 other vulnerabilities.
2.8.50
Affected by 1 other vulnerability.
3.4.26
Affected by 1 other vulnerability.
4.1.12
Affected by 2 other vulnerabilities.
4.2.7
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-v81g-hqja-hue2 URL Redirection to Untrusted Site (Open Redirect) By using backslashes in the `_failure_path` input field of login forms, an attacker can work around the redirection target restrictions and effectively redirect the user to any domain after login. CVE-2018-19790
GHSA-89r2-5g34-2g47

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:54:28.405846+00:00 GitLab Importer Affected by VCID-bpkv-qrmp-huac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2019-10911.yml 38.4.0
2026-04-16T20:50:38.087416+00:00 GitLab Importer Fixing VCID-v81g-hqja-hue2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2018-19790.yml 38.4.0
2026-04-11T22:05:26.895686+00:00 GitLab Importer Affected by VCID-bpkv-qrmp-huac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2019-10911.yml 38.3.0
2026-04-11T22:01:16.937614+00:00 GitLab Importer Fixing VCID-v81g-hqja-hue2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2018-19790.yml 38.3.0
2026-04-04T14:30:12.808156+00:00 GHSA Importer Fixing VCID-v81g-hqja-hue2 https://github.com/advisories/GHSA-89r2-5g34-2g47 38.1.0
2026-04-02T22:18:18.350967+00:00 GitLab Importer Affected by VCID-bpkv-qrmp-huac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2019-10911.yml 38.1.0
2026-04-02T22:14:19.960830+00:00 GitLab Importer Fixing VCID-v81g-hqja-hue2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2018-19790.yml 38.1.0
2026-04-01T16:35:59.513971+00:00 GitLab Importer Affected by VCID-bpkv-qrmp-huac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2019-10911.yml 38.0.0
2026-04-01T13:11:42.454298+00:00 GithubOSV Importer Fixing VCID-v81g-hqja-hue2 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-89r2-5g34-2g47/GHSA-89r2-5g34-2g47.json 38.0.0
2026-04-01T12:48:11.432990+00:00 GitLab Importer Fixing VCID-v81g-hqja-hue2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/security/CVE-2018-19790.yml 38.0.0