CVE-2023-41336

CVSS V2 None CVSS V3 None
Description
ux-autocomplete is a JavaScript Autocomplete functionality for Symfony. Under certain circumstances, an attacker could successfully submit an entity id for an `EntityType` that is *not* part of the valid choices. The problem has been fixed in `symfony/ux-autocomplete` version 2.11.2.
Overview
  • CVE ID
  • CVE-2023-41336
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-09-11T19:21:48.938Z
  • Last Modified Date
  • 2023-09-11T19:21:48.938Z
History
Created Old Value New Value Data Type Notes
2024-06-25 03:21:19 Added to TrackCVE