symfony/http-foundation
Ecosystem:
packagist
packagist
Package URL:
pkg:composer/symfony/http-foundation
Total PRs:
408 Dependabot PRs
408 Dependabot PRs
Latest PR:
about 5 hours ago
about 5 hours ago
Unique Repositories:
291 repositories
291 repositories
Unique Repos (30 days):
92 repositories
92 repositories
Security Advisories
Symfony has a security issue when parsing the Authorization header
GHSA-h7v2-2qwg-h829
CVE-2014-6061
MODERATE
published over 1 year ago
• updated about 6 hours ago
All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony HttpFoundation component are affected by this security issue.
This issue ...
Prevent cache poisoning via a Response Content-Type header in Symfony
GHSA-mcx4-f5f5-4859
CVE-2020-5255
LOW
published over 5 years ago
• updated about 6 hours ago
Description
-----------
When a `Response` does not contain a `Content-Type` header, Symfony falls back to the format defined in the `Accept` heade...
Invalid HTTP method overrides allow possible XSS or other attacks in Symfony
GHSA-x92h-wmg2-6hp7
CVE-2019-10913
CRITICAL
published almost 6 years ago
• updated 2 days ago
In Symfony before 2.7.51, 2.8.x before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, HTTP Methods provided as verbs or usin...
Argument injection in a MimeTypeGuesser in Symfony
GHSA-xhh6-956q-4q69
CVE-2019-18888
HIGH
published almost 6 years ago
• updated 6 days ago
An issue was discovered in Symfony 2.8.0 through 2.8.50, 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7. If an application pas...
Symfony vulnerable to denial of service via a malicious HTTP Host header
GHSA-v77v-x634-9m56
CVE-2014-5244
HIGH
published over 1 year ago
• updated about 18 hours ago
All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony HttpFoundation component are affected by this security issue.
This issue ...
Recent PRs (filtered by: Merged )
Bump symfony/http-foundation from 5.4.20 to 5.4.46
Crown-Commercial-Service/ccs-frontend #1662
5.4.20 → 5.4.46
Patch PR
Merged
7 months ago
Bump the composer group across 1 directory with 2 updates
askeita/certibot #11
6.2.13 → 6.3.5
Minor PR
Merged
7 months ago
Bump symfony/http-foundation from 6.2.13 to 6.3.5 in the composer group across 1 directory
6.2.13 → 6.3.5
Minor PR
Merged
7 months ago
chore: composer(deps): bump the all group in /webservice with 27 updates
7.2.5 → 7.2.6
Patch PR
Merged
7 months ago
1 comment
Bump the composer group across 1 directory with 5 updates
6.4.10 → 6.4.21
Patch PR
Merged
7 months ago
Bump symfony/http-foundation from 5.4.40 to 5.4.46 in the composer group
Joeri-Abbo/livewire-search #30
5.4.40 → 5.4.46
Patch PR
Merged
about 1 year ago
build(deps): bump symfony/http-foundation from 6.4.4 to 6.4.14
koel/koel #1872
6.4.4 → 6.4.14
Patch PR
Merged
about 1 year ago
Bump symfony/http-foundation from 6.4.0 to 6.4.14
dot-env-it/laravel-api-integrator #2
6.4.0 → 6.4.14
Patch PR
Merged
about 1 year ago
build(deps): bump symfony/http-foundation from 6.3.2 to 6.4.14
amlxv/studymate #14
6.3.2 → 6.4.14
Minor PR
Merged
about 1 year ago
Bump symfony/http-foundation from 7.0.7 to 7.1.7
gloggi/qualix #361
7.0.7 → 7.1.7
Minor PR
Merged
about 1 year ago
Bump symfony/http-foundation from 4.4.1 to 4.4.7 in /bookshop-api
4.4.1 → 4.4.7
Patch PR
Merged
over 5 years ago
Package Details
| Name: | symfony/http-foundation |
| Ecosystem: | packagist |
| PURL Type: | composer |
| Package URL: | pkg:composer/symfony/http-foundation |
| JSON API: | View JSON |
Security Advisories
Package Information
Description:
Defines an object-oriented layer for the HTTP specification
| Repository: | https://github.com/symfony/http-foundation |
| Homepage: | https://symfony.com |
| Latest Release: |
v7.3.0
7 months ago |
| Dependent Repos: | 533,200 |
| Dependent Packages: | 4,613 |
| Downloads: | 747,469,299 |
| Ranking: | Top 0.0056% by dependent repos Top 0.0068% by downloads Top 0.0081% by dependent pkgs |