VYPR

Packagist (Composer) package

symfony/dependency-injection

pkg:composer/symfony/dependency-injection

Vulnerabilities (1)

  • CVE-2019-10910CriMay 16, 2019
    affected >= 2.7.0, < 2.7.51fixed 2.7.51

    In Symfony before 2.7.51, 2.8.x before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, when service ids allow user input, this could allow for SQL Injection and remote code execution. This is related to symfony/dependency-injection.