symfony/runtime
php · symfony/runtimeHeads-up
symfony/runtime: Incomplete CVE-2024-50340 fix allows argv injection via web SAPI
The original fix for CVE-2024-50340 gated argv reading on empty($_GET).
10 Jun 2026 · schedule it
The original fix for CVE-2024-50340 gated argv reading on empty($_GET).