CVE-2012-5574
EUVD-2012-546418.12.2012, 01:55
lib/form/sfForm.class.php in Symfony CMS before 1.4.20 allows remote attackers to read arbitrary files via a crafted upload request.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| sensiolabs | symfony | 𝑥 ≤ 1.4.19 |
| sensiolabs | symfony | 1.4.0 |
| sensiolabs | symfony | 1.4.0:rc1 |
| sensiolabs | symfony | 1.4.0:rc2 |
| sensiolabs | symfony | 1.4.1 |
| sensiolabs | symfony | 1.4.2 |
| sensiolabs | symfony | 1.4.3 |
| sensiolabs | symfony | 1.4.4 |
| sensiolabs | symfony | 1.4.5 |
| sensiolabs | symfony | 1.4.6 |
| sensiolabs | symfony | 1.4.7 |
| sensiolabs | symfony | 1.4.8 |
| sensiolabs | symfony | 1.4.9 |
| sensiolabs | symfony | 1.4.10 |
| sensiolabs | symfony | 1.4.11 |
| sensiolabs | symfony | 1.4.12 |
| sensiolabs | symfony | 1.4.13 |
| sensiolabs | symfony | 1.4.14 |
| sensiolabs | symfony | 1.4.15 |
| sensiolabs | symfony | 1.4.16 |
| sensiolabs | symfony | 1.4.17 |
| sensiolabs | symfony | 1.4.18 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References