Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/05/27 9:9 p.m.7 views

GHSA-VQC8-7275-Q272 Symfony has Email Header Injection via Non-Token Characters in Mime Parameter Names

Description Symfony\Component\Mime\Header\ParameterizedHeader and the related parameter handling reachable from Symfony\Component\Mime\Header\Headers is responsible for serializing structured headers such as Content-Type and Content-Disposition, which carry key=value parameters e.g...

7.1CVSS5.8AI score0.00056EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2026/05/27 9:9 p.m.12 views

Symfony has Email Header Injection via Non-Token Characters in Mime Parameter Names

Description Symfony\Component\Mime\Header\ParameterizedHeader and the related parameter handling reachable from Symfony\Component\Mime\Header\Headers is responsible for serializing structured headers such as Content-Type and Content-Disposition, which carry key=value parameters e.g...

5.8AI score0.00056EPSS
Exploits0References5Affected Software2
Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.14 views

PT-2026-44139

Description SymfonyComponentMimeHeaderParameterizedHeader and the related parameter handling reachable from SymfonyComponentMimeHeaderHeaders is responsible for serializing structured headers such as Content-Type and Content-Disposition, which carry key=value parameters e.g. Content-Disposition:...

7.1CVSS5.8AI score0.00056EPSS
Exploits0References6
Veracode
Veracodeadded 2020/10/01 1:43 a.m.53 views

Carriage-Return Line-Feed (CRLF) Injection

urllib3 is vulnerable to Carriage-Return Line-Feed CRLF Injection. The vulnerability exists as it does not sufficiently check for non-token characters, allowing characters such as \r, \n to be parsed and interpreted...

6.5CVSS7.1AI score0.02199EPSS
Exploits0References9Affected Software7
OSV
OSVadded 2020/09/07 8:29 a.m.6 views

OPENSUSE-SU-2020:1369-1 Security update for squid

This update for squid fixes the following issues: squid was updated to version 4.13: - CVE-2020-24606: Fix livelocking in peerDigestHandleReply bsc1175671. - CVE-2020-15811: Improve Transfer-Encoding handling bsc1175665. - CVE-2020-15810: Enforce token characters for field-name bsc1175664. This...

9.9CVSS8AI score0.05706EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2020/09/04 12:0 a.m.30 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:2471-1)

This update for squid fixes the following issues : CVE-2020-24606: Fix livelocking in peerDigestHandleReply bsc1175671. CVE-2020-15811: Improve Transfer-Encoding handling bsc1175665. CVE-2020-15810: Enforce token characters for field-name bsc1175664. Note that Tenable Network Security has extract...

8.6CVSS6.7AI score0.05162EPSS
Exploits0References10
Friends Of PHP
Friends Of PHPadded 1970/01/01 12:0 a.m.4 views

CVE-2026-45070: Email Header Injection via Non-Token Characters in Mime Parameter Names

More info at https://symfony.com/cve-2026-45070...

5.8AI score0.00056EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 1970/01/01 12:0 a.m.4 views

CVE-2026-45070: Email Header Injection via Non-Token Characters in Mime Parameter Names

More info at https://symfony.com/cve-2026-45070...

5.8AI score0.00056EPSS
Exploits0Affected Software1
Rows per page
Query Builder