CVE-2026-45068
MEDIUM SEVERITYVulnerability Description
Symfony has an Argument Injection in SendmailTransport via Dash-Prefixed Recipient Address
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
symfony/mailer
External References
- https://github.com/symfony/symfony/security/advisories/GHSA-xx3c-qf5g-hc39
- https://github.com/symfony/symfony/commit/c45144862dc289d03952f41f6078174089a3afc6
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/mailer/CVE-2026-45068.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2026-45068.yaml
- https://symfony.com/cve-2026-45068
- https://github.com/advisories/GHSA-xx3c-qf5g-hc39
Discussion (0)
Add Comment
No comments yet. Be the first!