{"url":"http://public2.vulnerablecode.io/api/packages/31806?format=json","purl":"pkg:composer/symfony/routing@2.0.0","type":"composer","namespace":"symfony","name":"routing","version":"2.0.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.0.19","latest_non_vulnerable_version":"8.0.12","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/266093?format=json","vulnerability_id":"VCID-c94k-ud6m-n3ea","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-6431","reference_id":"","reference_type":"","scores":[{"value":"0.0022","scoring_system":"epss","scoring_elements":"0.44708","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0022","scoring_system":"epss","scoring_elements":"0.44859","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-6431"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/http-foundation/CVE-2012-6431.yaml","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/http-foundation/CVE-2012-6431.yaml"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/routing/CVE-2012-6431.yaml","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/routing/CVE-2012-6431.yaml"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/security/CVE-2012-6431.yaml","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/security/CVE-2012-6431.yaml"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2012-6431.yaml","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2012-6431.yaml"},{"reference_url":"https://github.com/symfony/symfony/commit/55014a6841bec50046e8329a4835c160ac31a496","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/symfony/symfony/commit/55014a6841bec50046e8329a4835c160ac31a496"},{"reference_url":"https://github.com/symfony/symfony/commit/8b2c17f80377582287a78e0b521497e039dd6b0d","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/symfony/symfony/commit/8b2c17f80377582287a78e0b521497e039dd6b0d"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2012-6431","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2012-6431"},{"reference_url":"https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"},{"reference_url":"http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385772?format=json","purl":"pkg:composer/symfony/routing@2.0.19","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/symfony/routing@2.0.19"}],"aliases":["CVE-2012-6431","GHSA-83c3-qx27-2rwr"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c94k-ud6m-n3ea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/211995?format=json","vulnerability_id":"VCID-cq6r-1p4q-97dg","summary":"Symfony XXE security vulnerability","references":[{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/routing/2012-08-28.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/routing/2012-08-28.yaml"},{"reference_url":"https://github.com/symfony/routing","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/symfony/routing"},{"reference_url":"https://github.com/symfony/routing/commit/769e8e6584c5d13e7c6f51aa77a9d5f977fec463","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/symfony/routing/commit/769e8e6584c5d13e7c6f51aa77a9d5f977fec463"},{"reference_url":"https://symfony.com/blog/security-release-symfony-2-0-17-released","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://symfony.com/blog/security-release-symfony-2-0-17-released"},{"reference_url":"https://github.com/advisories/GHSA-rjpm-qmq7-q85w","reference_id":"GHSA-rjpm-qmq7-q85w","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rjpm-qmq7-q85w"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31807?format=json","purl":"pkg:composer/symfony/routing@2.0.17","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-c94k-ud6m-n3ea"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/symfony/routing@2.0.17"}],"aliases":["GHSA-rjpm-qmq7-q85w"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cq6r-1p4q-97dg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/361442?format=json","vulnerability_id":"VCID-shyr-91nz-3qgp","summary":"Improper Restriction of XML External Entity Reference\nSecurity issues related to the way XML is handled.","references":[{"reference_url":"https://symfony.com/blog/security-release-symfony-2-0-17-released","reference_id":"","reference_type":"","scores":[],"url":"https://symfony.com/blog/security-release-symfony-2-0-17-released"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31807?format=json","purl":"pkg:composer/symfony/routing@2.0.17","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-c94k-ud6m-n3ea"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/symfony/routing@2.0.17"}],"aliases":["GMS-2012-10"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-shyr-91nz-3qgp"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/symfony/routing@2.0.0"}