CVE-2020-25912

Published
View on NVD ↗
CVSS v3
9.1
CRITICAL
CVSS v2
6.4
MEDIUM
Affected
1
PROJECT

Description

A XML External Entity (XXE) vulnerability was discovered in symphony\lib\toolkit\class.xmlelement.php in Symphony 2.7.10 which can lead to an information disclosure or denial of service (DOS).

symphonycms/symphonycms
symphonycms/symphonycms
This is the official Symphony CMS repository.
GitHubGitHub
546