Security Advisories - web-auth/webauthn-symfony-bundle - Packagist.org

web-auth/webauthn-symfony-bundle Security Advisories for 5.2.0 (2)

[MEDIUM] WebauthnAuthenticator leaks sensitive HTTP headers through INFO-level logs

PKSA-by78-v7zw-v73g GHSA-q683-8468-r6h6

Affected version: <5.3.4

Reported by:
GitHub
[MEDIUM] Webauthn Framework: allowed_origins collapses URL-like origins to host-only values, bypassing exact origin validation

PKSA-mvry-7c68-swp2 CVE-2026-30964 GHSA-f7pm-6hr8-7ggm

Affected version: >=5.2.0,<5.2.4

Reported by:
GitHub