CVE-2026-49215 | Symfony UX up to 2.35.x/3.0.x LiveComponent isLiveComponentRequest cross-domain policy

SecurityVulns

A vulnerability, which was classified as problematic, was found in Symfony UX up to 2.35.x/3.0.x. Affected by this issue is the function isLiveComponentRequest of the component LiveComponent. Executing a manipulation can lead to permissive cross-domain policy with untrusted domains.

The identification of this vulnerability is CVE-2026-49215. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More