Security Advisories - PKSA-4tmc-tz3m-9xpb - Packagist.org

PKSA-4tmc-tz3m-9xpb Security Advisory

CVE-2026-45075: HEAD Request Bypasses methods: ['GET'] Filter in #[IsGranted] / #[IsSignatureValid] / #[IsCsrfTokenValid]

PKSA-4tmc-tz3m-9xpb CVE-2026-45075

Affected package: symfony/security-http

Affected version: >=7.4.0,<7.4.12|>=8.0.0,<8.0.12

Reported by:
FriendsOfPHP/security-advisories