Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/symfony/mime@4.3.8
purl pkg:composer/symfony/mime@4.3.8
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-jdsd-3vnz-uygn Argument injection in a MimeTypeGuesser in Symfony An issue was discovered in Symfony 2.8.0 through 2.8.50, 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7. If an application passes unvalidated user input as the file for which MIME type validation should occur, then arbitrary arguments are passed to the underlying file command. This is related to symfony/http-foundation (and symfony/mime in 4.3.x). CVE-2019-18888
GHSA-xhh6-956q-4q69

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:58:51.599023+00:00 GitLab Importer Fixing VCID-jdsd-3vnz-uygn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/mime/CVE-2019-18888.yml 38.4.0
2026-04-11T22:10:02.449354+00:00 GitLab Importer Fixing VCID-jdsd-3vnz-uygn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/mime/CVE-2019-18888.yml 38.3.0
2026-04-02T22:22:38.728813+00:00 GitLab Importer Fixing VCID-jdsd-3vnz-uygn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/mime/CVE-2019-18888.yml 38.1.0
2026-04-01T16:40:24.904964+00:00 GitLab Importer Fixing VCID-jdsd-3vnz-uygn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/mime/CVE-2019-18888.yml 38.0.0
2026-04-01T15:57:47.903856+00:00 GHSA Importer Fixing VCID-jdsd-3vnz-uygn https://github.com/advisories/GHSA-xhh6-956q-4q69 38.0.0
2026-04-01T13:04:21.250428+00:00 GithubOSV Importer Fixing VCID-jdsd-3vnz-uygn https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/12/GHSA-xhh6-956q-4q69/GHSA-xhh6-956q-4q69.json 38.0.0