Security Advisories - symfony/http-kernel - Packagist.org

symfony/http-kernel Security Advisories for v8.0.0-RC3 (1)

CVE-2026-45075: HEAD Request Bypasses methods: ['GET'] Filter in #[IsGranted] / #[IsSignatureValid] / #[IsCsrfTokenValid]

PKSA-dw7n-x7f5-zf63 CVE-2026-45075

Affected version: >=7.4.0,<7.4.12|>=8.0.0,<8.0.12

Reported by:
FriendsOfPHP/security-advisories