CVE-2026-45075
MEDIUM SEVERITYVulnerability Description
Synfony's HEAD Request Bypasses methods: ['GET'] Filter in #[IsGranted] / #[IsSignatureValid] / #[IsCsrfTokenValid]
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
symfony/http-kernel
External References
- https://github.com/symfony/symfony/security/advisories/GHSA-6439-2f28-8p8q
- https://github.com/symfony/symfony/commit/fa8d5c67aa4b22c9656e3fd7d5c3aa59865bf838
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/http-kernel/CVE-2026-45075.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/security-http/CVE-2026-45075.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2026-45075.yaml
- https://symfony.com/cve-2026-45075
- https://github.com/advisories/GHSA-6439-2f28-8p8q
Discussion (0)
Add Comment
No comments yet. Be the first!