Search for packages
| purl | pkg:composer/symfony/webhook@6.3.8 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-6ty5-u59k-pbhh | Symfony potential Cross-site Scripting in WebhookController ### Description The error message in WebhookController returns unescaped user-submitted input. ### Resolution WebhookController now doesn't return any user-submitted input in its response. The patch for this issue is available [here](https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962) for branch 6.3. ### Credits We would like to thank Maxime Aknin for reporting the issue and to Nicolas Grekas for providing the fix. |
CVE-2023-46735
GHSA-72x2-5c85-6wmr |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-03T18:53:10.286103+00:00 | GitLab Importer | Fixing | VCID-6ty5-u59k-pbhh | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/webhook/CVE-2023-46735.yml | 37.0.0 |
| 2025-07-03T16:53:46.686505+00:00 | GHSA Importer | Fixing | VCID-6ty5-u59k-pbhh | https://github.com/advisories/GHSA-72x2-5c85-6wmr | 37.0.0 |
| 2025-07-01T18:15:03.028884+00:00 | GitLab Importer | Fixing | VCID-6ty5-u59k-pbhh | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/webhook/CVE-2023-46735.yml | 36.1.3 |
| 2025-07-01T12:15:25.864043+00:00 | GithubOSV Importer | Fixing | VCID-6ty5-u59k-pbhh | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/11/GHSA-72x2-5c85-6wmr/GHSA-72x2-5c85-6wmr.json | 36.1.3 |