[MEDIUM] Esi Code Injection

PKSA-15jn-wzq4-94pw CVE-2015-2308 GHSA-5c58-w9xc-qcj9

Affected package: symfony/http-kernel

Affected version: >=2.0.0,<2.1.0|>=2.1.0,<2.2.0|>=2.2.0,<2.3.0|>=2.3.0,<2.3.27|>=2.4.0,<2.5.0|>=2.5.0,<2.5.11|>=2.6.0,<2.6.6

Reported by:
GitHub, FriendsOfPHP/security-advisories