sylius/grid-bundle
Packagist2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting sylius/grid-bundlepage 1 of 1
- CVE-2019-12186MEDIUMCVSS 4.8EG 4.8✓ Fixed in 1.5.12019-12-31
vulnerable: v1.5.0
An issue was discovered in Sylius products. Missing input sanitization in sylius/sylius 1.0.x through 1.0.18, 1.1.x through 1.1.17, 1.2.x through 1.2.16, 1.3.x through 1.3.11, and 1.4.x through 1.4.3 and sylius/grid 1.0.x through 1.0.18, 1…
- CVE-2022-24752CRITICALCVSS 9.8EG 9.8✓ Fixed in 1.10.12022-03-15
vulnerable: 1.0.0-patch1 ... v1.9.0 (108 versions)
SyliusGridBundle is a package of generic data grids for Symfony applications. Prior to versions 1.10.1 and 1.11-rc2, values added at the end of query sorting were passed directly to the database. The maintainers do not know if this could l…
Check whether sylius/grid-bundle is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for sylius/grid-bundle CVEs against the assets you own.
Start Free Scan →