Security Advisory

CVE-2012-6431

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-12-27 11:00:00

Last updated 2024-09-17 00:46:20

Assigner mitre

State PUBLISHED

Description

Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.

← Browse all CVEs View on cve.org ↗