CVE-2019-10912

CVE-2019-10912

In Symfony before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. This is related to symfony/cache and symfony/phpunit-bridge.

Source: CVE-2019-10912

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다