Symfony News: Latest Symfony News

A Week of Symfony #778 (22-28 November 2021)

This week, Symfony 4.4.35 and 5.3.12 releases were published to address some potential security vulnerabilities. In addition, Symfony 5.4.0-RC1 and 6.0.0-RC1 were published in prepara...

New in Symfony 5.4: Notifier integrations

The Notifier component was introduced in Symfony 5.2 as the best way to send notifications via one or more channels (email, SMS, chats, etc.) The component is already integrated with ...

Last Days of Symfony Black Friday 2021 Deals

Symfony Black Friday 2021 deals will end in just three days, on Monday, November 29, 2021. Here's a quick recap of this year's deals: 30% discount on Symfony and Twig certifications C...

New in Symfony 5.4: Profiler improvements

In addition to the redesigned logs panel, Symfony 5.4 includes other improvements related to the Symfony profiler. Conditional profiling ...

Two weeks left before SymfonyWorld Online 2021 Winter Edition, book your ticket now!

The SymfonyWorld Online 2021 Winter Edition conference will take place in just two weeks, on December 9-10, 2021. The event includes 25 talks covering a wide range of topics related t...

New in Symfony 5.4: Messenger Improvements

Configurable handlers with PHP attributes Contributed by Alireza Mirsepassi in #43588. PHP...

CVE-2021-41268: Remember me cookie persistance after password changes

Description Since the rework of the Remember me cookie in Symfony 5.3, the cookie is not invalidated anymore when the user changes its password. Attackers can therefore maintain the...

CVE-2021-41267: Webcache Poisoning via X-Forwarded-Prefix and sub-request

Description When a Symfony application is running behind a proxy or a load-balancer, you can tell Symfony to look for the X-Forwarded-* HTTP headers. HTTP headers that are not part o...

CVE-2021-41270: Prevent CSV Injection via formulas

Description CSV Injection, also known as Formula Injection, occurs when websites embed untrusted input inside CSV files. When a spreadsheet program opens a CSV, any cell starting wit...

Symfony 6.0.0-RC1 released

Symfony 6.0.0-RC1 has just been released. Here is a list of the most important changes: security #cve-2021-41268 [SecurityBundle] Default signature_properties to the previous behavior...

Symfony 5.4.0-RC1 released

Symfony 5.4.0-RC1 has just been released. Here is a list of the most important changes: security #cve-2021-41268 [SecurityBundle] Default signature_properties to the previous behavior...

Symfony 5.3.12 released

Symfony 5.3.12 has just been released. Here is a list of the most important changes: security #cve-2021-41268 [SecurityBundle] Default signature_properties to the previous behavior (@...

Symfony 4.4.35 released

Symfony 4.4.35 has just been released. Here is a list of the most important changes: security #cve-2021-41270 [Serializer] Use single quote to escape formulas (@jderusse) bug #44232 [...

New in Symfony 5.4: DependencyInjection Improvements

Inject tagged services in service locators Contributed by Ion Bazan in #43015. In Symfony ...

Symfony 5.3.11 released

Symfony 5.3.11 has just been released. Here is a list of the most important changes: bug #44188 [VarExporter] fix exporting declared but unset properties when __sleep() is implemented...

Symfony 4.4.34 released

Symfony 4.4.34 has just been released. Here is a list of the most important changes: bug #44188 [VarExporter] fix exporting declared but unset properties when __sleep() is implemented...

A Week of Symfony #777 (15-21 November 2021)

This week, Symfony 5.4.0 BETA3 and 6.0.0 BETA3 versions were published so you can test them on your applications before their final release at the end of the month. In addition, the S...

New in Symfony 5.4: Translation Improvements

Renamed the Translation Update Command Contributed by Mathieu Santostefano in #43758. The ...

Symfony 6.0.0-BETA3 released

Symfony 6.0.0-BETA3 has just been released. Here is a list of the most important changes: feature #44125 Add a setter on DateTimeNormalizer to change the default context at runtime (@...

Symfony 5.4.0-BETA3 released

Symfony 5.4.0-BETA3 has just been released. Here is a list of the most important changes: feature #44125 Add a setter on DateTimeNormalizer to change the default context at runtime (@...

Symfony News

Latest News

A Week of Symfony #778 (22-28 November 2021)

New in Symfony 5.4: Notifier integrations

Last Days of Symfony Black Friday 2021 Deals

New in Symfony 5.4: Profiler improvements

Two weeks left before SymfonyWorld Online 2021 Winter Edition, book your ticket now!

New in Symfony 5.4: Messenger Improvements

CVE-2021-41268: Remember me cookie persistance after password changes

CVE-2021-41267: Webcache Poisoning via X-Forwarded-Prefix and sub-request

CVE-2021-41270: Prevent CSV Injection via formulas

Symfony 6.0.0-RC1 released

Symfony 5.4.0-RC1 released

Symfony 5.3.12 released

Symfony 4.4.35 released

New in Symfony 5.4: DependencyInjection Improvements

Symfony 5.3.11 released

Symfony 4.4.34 released

A Week of Symfony #777 (15-21 November 2021)

New in Symfony 5.4: Translation Improvements

Symfony 6.0.0-BETA3 released

Symfony 5.4.0-BETA3 released

About us

Resources

Find us on Twitter

Find us on Facebook

ADS