Total vulnerabilities in the database
Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.
| Software | From | Fixed in |
|---|---|---|
| sensiolabs / symfony | 2.0.18 | 2.0.18.x |
| sensiolabs / symfony | 2.0.7 | 2.0.7.x |
| sensiolabs / symfony | 2.0.15 | 2.0.15.x |
| sensiolabs / symfony | 2.0.11 | 2.0.11.x |
| sensiolabs / symfony | 2.0.8 | 2.0.8.x |
| sensiolabs / symfony | 2.0.10 | 2.0.10.x |
| sensiolabs / symfony | 2.0.1 | 2.0.1.x |
| sensiolabs / symfony | 2.0.0 | 2.0.0.x |
| sensiolabs / symfony | 2.0.13 | 2.0.13.x |
| sensiolabs / symfony | 2.0.5 | 2.0.5.x |
| sensiolabs / symfony | 2.0.2 | 2.0.2.x |
| sensiolabs / symfony | 2.0.16 | 2.0.16.x |
| sensiolabs / symfony | 2.0.6 | 2.0.6.x |
| sensiolabs / symfony | 2.0.14 | 2.0.14.x |
| sensiolabs / symfony | 2.0.17 | 2.0.17.x |
| sensiolabs / symfony | 2.0.9 | 2.0.9.x |
| sensiolabs / symfony | 2.0.19 | 2.0.19.x |
| sensiolabs / symfony | 2.0.3 | 2.0.3.x |
| sensiolabs / symfony | 2.0.4 | 2.0.4.x |
| sensiolabs / symfony | 2.0.12 | 2.0.12.x |