{"uuid": "9d2f8cec-a93e-4c03-af55-8f467304af2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-10909", "type": "seen", "source": "https://t.me/cve_mitre_org/25", "content": "CVE-2019-10909 In Symfony before 2.7.51, 2.8.x before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, validation messages are not escaped, which can lead to XSS when user input is included. This is related to symfony/framework-bundle. https://t.co/5Wtk9vxHFP\u2014 CVE (@CVEnew) May 16, 2019\n\nMay 17, 2019 at 01:45AM\nvia Twitter https://twitter.com/CVEnew", "creation_timestamp": "2019-05-16T22:51:24.000000Z"}