Lucene search
MitreCVELIST:CVE-2020-28925HistoryDec 30, 2020 - 6:47 p.m.
CVE-2020-28925
2020-12-3018:47:18
mitre
www.cve.org
1
bolt
twig
request
filter
inconsistency
php security guidance
Bolt before 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the “How to Harden Your PHP for Better Security” guidance.
Related
veracode
veracode
Authorization Bypass
2020-12-31 01:40:04
cve
cve
CVE-2020-28925
2020-12-30 19:15:13
osv
osv
OS Command injection in Bolt
2021-05-06 18:53:29
CVE-2020-28925
2020-12-30 19:15:13
prion
prion
Design/Logic Flaw
2020-12-30 19:15:00
github
github
OS Command injection in Bolt
2021-05-06 18:53:29
nvd
nvd
CVE-2020-28925
2020-12-30 19:15:13
cbl_mariner
cbl_mariner
CVE-2020-28925 affecting package bolt 0.9.2-2
2024-09-21 03:20:41
rosalinux
rosalinux
Advisory ROSA-SA-2021-1809
2021-07-02 16:34:28