VulnerableCode Package Details - pkg:composer/symfony/webhook@6.3.0

Search for packages

Package details: pkg:composer/symfony/webhook@6.3.0

Essentials
History (3)

purl	pkg:composer/symfony/webhook@6.3.0

Next non-vulnerable version	6.3.8
Latest non-vulnerable version	6.3.8
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-6ty5-u59k-pbhh Aliases: CVE-2023-46735 GHSA-72x2-5c85-6wmr	Symfony potential Cross-site Scripting in WebhookController ### Description The error message in WebhookController returns unescaped user-submitted input. ### Resolution WebhookController now doesn't return any user-submitted input in its response. The patch for this issue is available [here](https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962) for branch 6.3. ### Credits We would like to thank Maxime Aknin for reporting the issue and to Nicolas Grekas for providing the fix.	6.3.8 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-03T18:53:10.283060+00:00	GitLab Importer	Affected by	VCID-6ty5-u59k-pbhh	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/webhook/CVE-2023-46735.yml	37.0.0
2025-07-03T16:53:46.684501+00:00	GHSA Importer	Affected by	VCID-6ty5-u59k-pbhh	https://github.com/advisories/GHSA-72x2-5c85-6wmr	37.0.0
2025-07-01T18:15:03.027114+00:00	GitLab Importer	Affected by	VCID-6ty5-u59k-pbhh	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/webhook/CVE-2023-46735.yml	36.1.3