CVE-2018-13818

🗓️ 10 Jul 2018 14:00:29Reported by mitreType

Twig 2.4.4 SSTI via search_key parameter CVE-2018-1381

Reporter	Title	Published	Views	Family All 6
Debian CVE	CVE-2018-13818	10 Jul 201814:29	–	debiancve
Cvelist	CVE-2018-13818	10 Jul 201814:00	–	cvelist
Prion	Input validation	10 Jul 201814:29	–	prion
NVD	CVE-2018-13818	10 Jul 201814:29	–	nvd
UbuntuCve	CVE-2018-13818	10 Jul 201800:00	–	ubuntucve
Veracode	Server-Side Template Injection (SSTI)	11 Jul 201805:24	–	veracode

Nvd

Node

symfony twigRange<2.4.4

Source	Link
github	www.github.com/twigphp/Twig/blob/2.x/CHANGELOG
github	www.github.com/twigphp/Twig/commit/eddb97148ad779f27e670e1e3f19fb323aedafeb
github	www.github.com/twigphp/Twig/issues/2743
exploit-db	www.exploit-db.com/exploits/44102/
mobile	www.mobile.twitter.com/jameel_nabbo/status/1032593354704515072

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jul 2018 14:29Current

9.5High risk

Vulners AI Score9.5

CVSS27.5

CVSS39.8

EPSS0.05158

CWE-94