Critical severity9.1NVD Advisory· Published Oct 31, 2021· Updated Jul 5, 2026
CVE-2020-25912
CVE-2020-25912
Description
A XML External Entity (XXE) vulnerability was discovered in symphony\lib\toolkit\class.xmlelement.php in Symphony 2.7.10 which can lead to an information disclosure or denial of service (DOS).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Symphony/Symphonydescription
- Range: <=2.7.10
- Range: <=2.7.10
Patches
Vulnerability mechanics
References
2- github.com/symphonycms/symphonycms/issues/2924nvdExploitIssue TrackingThird Party Advisory
- symphony.comnvdProduct
News mentions
0No linked articles in our index yet.