title: "CVE-2016-2403: Unauthorized access on a misconfigured Ldap server when using an empty password" link: https://symfony.com/cve-2016-2403 cve: CVE-2016-2403 branches: 2.8.x: time: 2016-05-09 21:34:47 versions: ['>=2.8.0', '<2.8.6'] 3.0.x: time: 2016-05-09 21:35:23 versions: ['>=3.0.0', '<3.0.6'] reference: composer://symfony/security-core
info at phpclasses dot org