Symfonia — Vulnerabilities & Security Advisories 4

Browse all 4 CVE security advisories affecting Symfonia. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Symfonia is an enterprise resource planning (ERP) solution primarily used for construction and project management, handling financial data and operational workflows. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and access controls. The platform has faced security incidents, including a 2021 vulnerability allowing unauthorized access to sensitive project data. While Symfonia has addressed these issues through patches, its complex architecture and integration with third-party systems continue to present potential attack surfaces, requiring regular security assessments to mitigate risks.

Top products by Symfonia: Ready_

CVEs 4

CVE ID	Title	CVSS	Severity	Published
CVE-2025-1983	Stored Cross-Site Scripting in Ready_ — Ready_CWE-79	6.1^AI	Medium^AI	2025-04-16
CVE-2025-1982	Local File Inclusion in Ready_ — Ready_CWE-552	6.5^AI	Medium^AI	2025-04-16
CVE-2025-1981	SQL Injection in Ready_ — Ready_CWE-89	8.8^AI	High^AI	2025-04-16
CVE-2025-1980	Remote Code Execution via Unrestricted File Upload in Ready_ — Ready_CWE-434	8.8^AI	High^AI	2025-04-16

This page lists every published CVE security advisory associated with Symfonia. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Symfonia — Vulnerabilities & Security Advisories 4