search

xiidea / EasyAuditBundle

A Symfony Bundle To Log Selective Events
http://xiidea.github.io/EasyAuditBundle/
MIT License
89 stars 22 forks source link

[Insight] Projects must not depend on dependencies with known security issues #11

Closed ronisaha closed 8 years ago

ronisaha commented 8 years ago

The checker detected 2 security issues in package symfony/symfony installed in version 3.0.4.0

  1. CVE-2016-2403: Unauthorized access on a misconfigured Ldap server when using an empty password.
  2. CVE-2016-4423: Large username storage in session.

Posted from SensioLabsInsight