Symfony on Medium
·
News
Aggregated news about Symfony
Symfony on Medium
·
Real-Time Chat Application Using Symfony and MySQL
Symfony on Medium
·
Symfony Station Communiqué — 08 November 2024.
Symfony on Medium
·
Desktop Notification — Symfony 7
Symfony Blog
·
A Week of Symfony #932 (4-10 November 2024)
This week, Symfony 5.4.46, 6.4.14, and 7.1.7, maintenance versions were released. In addition, we released the second beta version of Symfony 7.2 ahead of its final release at the...
Symfony on Medium
·
Laravel — New defer() Function
Symfony Blog
·
New in Symfony 7.2: Constraint Improvements
In Symfony 7.2, besides introducing three new constraints and
improving the Compound constraint, we've also improved other constraints.
Added a Validation Mode for BIC Constraint…
Symfony on Medium
·
How to Implement CSRF Protection in Symfony with Example
Symfony on Medium
·
How to Implement CSRF Protection in Symfony with Example
Symfony Blog
·
Less than a month to go: Get ready for SymfonyCon Vienna 2024!
<
SymfonyCon Vienna is only a month away! 🎉 The full schedule is now online, packed with everything you need to plan for this incredible event with the Symfony and PHP community....
Symfony Blog
·
New in Symfony 7.2: Console Finished Indicator
Contributed by
Laurens Laman
in
#57576…
Symfony Blog
·
Twig CVE-2024-51755: Unguarded calls to __isset() and to array-accesses in a sandbox
Affected versions
Twig versions <3.11.2; >=3.12,<3.14.1 are affected by this security issue.
The issue has been fixed in Twig 3.11.2 and 3.14.1.
Note that Twig versions...
Symfony Blog
·
Twig CVE-2024-51754: Unguarded calls to __toString() in a sandbox when an object is in an array or an argument list
Affected versions
Twig versions <3.11.2; >=3.12,<3.14.1 are affected by this security issue.
The issue has been fixed in Twig 3.11.2 and 3.14.1.
Note that Twig versions...
Symfony Blog
·
CVE-2024-50341: Security::login does not take into account custom user_checker
Affected versions
Symfony versions >=6.2, <6.4.10; >=7.0, <7.0.10; >=7.1, <7.1.3 of the Symfony SecurityBundle component are affected by this security...
Symfony Blog
·
CVE-2024-50343: Incorrect response from Validator when input ends with `\n`
Affected versions
Symfony versions <5.4.43; >=6, <6.4.11; >=7, <7.1.4 of the Symfony Validator component are affected by this security issue.
The issue has...
Symfony Blog
·
CVE-2024-50342: Internal address and port enumeration allowed by NoPrivateNetworkHttpClient
Affected versions
Symfony versions <5.4.46; >=6, <6.4.14; >=7, <7.1.7 of the Symfony HttpClient component are affected by this security issue.
The issue has...
Symfony Blog
·
CVE-2024-50340: Ability to change environment from query
Affected versions
Symfony versions <5.4.46; >=6, <6.4.14; >=7, <7.1.7 of the Symfony Runtime component are affected by this security issue.
The issue has been...
Symfony Blog
·
CVE-2024-50345: Open redirect via browser-sanitized URLs
Affected versions
Symfony versions <5.4.46; >=6, <6.4.14; >=7, <7.1.7 of the Symfony HttpFoundation component are affected by this security issue.
The issue...
Symfony Blog
·
CVE-2024-51736: Command execution hijack on Windows with Process class
Affected versions
Symfony versions <5.4.46; >=6, <6.4.14; >=7, <7.1.7 of the Symfony Process component are affected by this security issue.
The issue has been...
Symfony Blog
·
Symfony 7.2.0-BETA2 released
Symfony 7.2.0-BETA2 has just been released.
Here is the list of the most important changes since 7.2.0-BETA1:
bug #58776 [DependencyInjection][HttpClient][Routing] Reject URIs...