Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:composer/symfony/twilio-notifier@7.4.12

Type composer

Namespace symfony

Name twilio-notifier

Version 7.4.12

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 8.0.12

Latest_non_vulnerable_version 8.0.12

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-55k3-e72q-2ubr

vulnerability_id VCID-55k3-e72q-2ubr

summary Symfony: Twilio SMS Notifier allows unauthenticated webhook injection due to missing X-Twilio-Signature verification

references

reference_url

https://github.com/symfony/symfony

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/symfony/symfony

reference_url

https://github.com/symfony/symfony/commit/8545fb2af6c07dfb5ef0fc8d9bccf86db2c94356

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/symfony/symfony/commit/8545fb2af6c07dfb5ef0fc8d9bccf86db2c94356

reference_url

https://symfony.com/cve-2026-47212

reference_id

CVE-2026-47212

reference_type

scores

value	4.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://symfony.com/cve-2026-47212

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2026-47212.yaml

reference_id

CVE-2026-47212.YAML

reference_type

scores

value	4.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2026-47212.yaml

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/twilio-notifier/CVE-2026-47212.yaml

reference_id

CVE-2026-47212.YAML

reference_type

scores

value	4.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/twilio-notifier/CVE-2026-47212.yaml

reference_url

https://github.com/advisories/GHSA-55rj-x2vc-4whq

reference_id

GHSA-55rj-x2vc-4whq

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-55rj-x2vc-4whq

reference_url

https://github.com/symfony/symfony/security/advisories/GHSA-55rj-x2vc-4whq

reference_id

GHSA-55rj-x2vc-4whq

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	4.6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/symfony/symfony/security/advisories/GHSA-55rj-x2vc-4whq

fixed_packages

url	pkg:composer/symfony/twilio-notifier@6.4.40
purl	pkg:composer/symfony/twilio-notifier@6.4.40
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/symfony/twilio-notifier@6.4.40

url	pkg:composer/symfony/twilio-notifier@7.4.12
purl	pkg:composer/symfony/twilio-notifier@7.4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/symfony/twilio-notifier@7.4.12

url	pkg:composer/symfony/twilio-notifier@8.0.12
purl	pkg:composer/symfony/twilio-notifier@8.0.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/symfony/twilio-notifier@8.0.12

aliases CVE-2026-47212, GHSA-55rj-x2vc-4whq

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-55k3-e72q-2ubr

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:composer/symfony/twilio-notifier@7.4.12

Package Instance