Affected Versions Versions < 2.11.1 are of the symfony/ux-autocomplete package are affected by this security issue. Description Under certain circumstances, an attacker could successfully submit an entity id for an EntityType that is not part of the… https://symfony.com/blog/cve-2023-41336-symfony-ux-autocomplete-prevent-injection-of-invalid-entity-ids-for-autocomplete-fields?utm_source=Symfony%20Blog%20Feed&utm_medium=feed
Inicia sesión para agregar comentarios
Otros mensajes en este grupo.
This week, the first release candidate version of Symfony 7.1 was published so you can test it in your own projects before the stable release in two weeks. Meanwhile, we continued publishing more talk
Symfony 7.1.0-RC1 has just been released. Here is the list of the most important changes since 7.1.0-BETA1:
bug #54970 [DependencyInjection] Process PHP configs using the ContainerConfigurator (@
SymfonyOnline June 2024 is just around the corner and will start on:
June 4-5: Workshop days. It is possible to attend 1 two-day training or 2 one-day trainings! June 6-7: Online conference
Symfony provides many ready-to-use integrations with third-party services to send emails and notifications (via SMS, chat messages, or push notifications). From Google, Microsoft, and Amazon to smalle
SymfonyOnline June 2024 is just around the corner and will start on:
June 4-5: Workshop days. It is possible to attend 1 two-day training or 2 one-day trainings! June 6-7: Online conference
The Validator component was one of the most active components during the Symfony 7.1 development cycle. In addition to the new MacAddress and Charset constraints and the improved UniqueEntity constrai
SymfonyOnline June 2024 is just around the corner and will start on:
June 4 & 5th: Workshop days to learn and practice in a friendly atmosphere and small groups June 6 & 7th: Online