CVE-2026-45068 | Symfony up to 5.4.51/6.4.39/7.4.11/8.0.11 SendmailTransport recipient os command injection

SecurityVulns

A vulnerability categorized as critical has been discovered in Symfony up to 5.4.51/6.4.39/7.4.11/8.0.11. This affects an unknown part of the component SendmailTransport. Such manipulation of the argument recipient leads to os command injection.

This vulnerability is traded as CVE-2026-45068. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More