CVE-2026-48489 - Symfony: Security Firewall Bypass via failure_forward Subrequest: Unauthenticated Access to access_control-Protected GET Routes
CVE ID :CVE-2026-48489 Published : July 14, 2026, 8:17 p.m. | 16 minutes ago Description :Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 5.4.53, 6.4.41, 7.4.13, and 8.0.13, DefaultAuthenticationFailureHandler honored the...