6.1

CVSS Score

3.0

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2018-19790

CVE-2018-19790: Symfony Open Redirect

An open redirect was discovered in Symfony 2.7.x before 2.7.50, 2.8.x before 2.8.49, 3.x before 3.4.20, 4.0.x before 4.0.15, 4.1.x before 4.1.9 and 4.2.x before 4.2.1. By using backslashes in the _failure_path input field of login forms, an attacker can work around the redirection target restrictions and effectively redirect the user to any domain after login.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2018-19790

CVE-2018-19790:

6.1

CVSS Score

3.0

-

CVSS Score

Basic Information

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
symfony/security-http	composer	>= 2.7.38, < 2.7.50	2.7.50
symfony/security-http	composer	>= 2.8.0, < 2.8.49	2.8.49
symfony/security-http	composer	>= 3.0.0, < 3.4.20	3.4.20
symfony/security-http	composer	>= 4.0.0, < 4.0.15	4.0.15
symfony/security-http	composer	>= 4.1.0, < 4.1.9	4.1.9
symfony/security-http	composer	>= 4.2.0, < 4.2.1	4.2.1
symfony/security	composer	>= 2.7.38, < 2.7.50	2.7.50
symfony/security	composer	>= 2.8.0, < 2.8.49	2.8.49
symfony/security	composer	>= 3.0.0, < 3.4.19	3.4.19
symfony/security	composer	>= 4.0.0, < 4.0.15	4.0.15
symfony/security	composer	>= 4.1.0, < 4.1.9	4.1.9
symfony/security	composer	>= 4.2.0, < 4.2.1	4.2.1
symfony/symfony	composer	>= 2.7.38, < 2.7.50	2.7.50
symfony/symfony	composer	>= 2.8.0, < 2.8.49	2.8.49
symfony/symfony	composer	>= 3.0.0, < 3.4.20	3.4.20
symfony/symfony	composer	>= 4.0.0, < 4.0.15	4.0.15
symfony/symfony	composer	>= 4.1.0, < 4.1.9	4.1.9

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from improper validation of redirect targets in the createRedirectResponse method. The original regex pattern (#^https?://[^/]++#i) only checked for forward slashes after the protocol. By using backslashes (e.g., http:\/\/evil.com), attackers could bypass the domain regex check. The patch modifies the regex to #^https?:[/\\]{2,}+[^/]++#i to detect both forward and backward slashes, confirming this function as the vulnerable entry point. The associated test cases added in HttpUtilsTest.php validate() this behavior change.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

6.1

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2018-19790: Symfony Open Redirect

CVE-2018-19790:

6.1

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

CVE-2018-19790: Symfony Open Redirect

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Technical Details

Basic Information

Basic Information

6.1

6.1

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI