Package impact
Packagist / symfony/mime
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-45067 | high | — | 8.0 | 15d ago | Symfony has Email Header / SMTP Command Injection via CRLF in Symfony\Component\Mime\Address | |||
| CVE-2026-45070 | medium | — | 5.5 | 15d ago | Symfony has Email Header Injection via Non-Token Characters in Mime Parameter Names | |||
| CVE-2019-18888 | unknown | — | — | 7y ago | An issue was discovered in Symfony 2.8.0 through 2.8.50, 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7. If an application passes unvalidated user input as the file for which MIM… |