pkg:Packagist/symfony/security-bundle

All known vulnerabilities

• HIGH8.8CVE-2018-11406Symfony CSRF Token Fixation
  >= 2.7.0, < 2.7.48
• MEDIUM6.5CVE-2021-41268Cookie persistence after password changes in symfony/security-bundle
  >= 5.3.0, < 5.3.12
• MEDIUM6.3CVE-2022-24895Symfony vulnerable to Session Fixation of CSRF tokens
  >= 2.0.0, < 4.4.50
• MEDIUM6.1CVE-2018-11408Symfony Open Redirect
  >= 2.7.0, < 2.7.48
• LOW3.1CVE-2024-50341Symfony's `Security::login` does not take into account custom `user_checker`
  >= 6.2.0, < 6.4.10