CVE-2026-45755
MEDIUM SEVERITYVulnerability Description
Symfony's Mailtrap Mailer Webhook Parser Never Verifies the X-Mt-Signature HMAC — Unauthenticated Webhook Event Injection
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
symfony/mailtrap-mailer
External References
- https://github.com/symfony/symfony/security/advisories/GHSA-59f3-vp2f-mp9w
- https://github.com/symfony/symfony/commit/4e0467e4e182cf2e704a3d9e1bc1a6be65d52ab8
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/mailtrap-mailer/CVE-2026-45755.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2026-45755.yaml
- https://symfony.com/cve-2026-45755
- https://github.com/advisories/GHSA-59f3-vp2f-mp9w
Discussion (0)
Add Comment
No comments yet. Be the first!