Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added yesterday5 views

CVE-2026-48808

A flaw was found in Twig, a template language for PHP. The column filter in Twig fails to properly forward the active sandbox state, specifically the current Source to the SandboxExtension::checkPropertyAllowed function. This oversight results in the loss of SourcePolicyInterface decisions,...

6CVSS6AI score0.0026EPSS
Exploits0References2
NVD
NVD
added 2 days ago6 views

CVE-2026-48805

Twig is a template language for PHP. Prior to 3.27.0, deprecated internal wrappers in src/Resources/core.php do not forward the current sandbox state to CoreExtension::checkArrow, arraySome, and arrayEvery, allowing legacy calls such as twigarraysome, twigarrayevery, and twigcheckarrowinsandbox t...

5.3CVSS0.00276EPSS
Exploits0References3
CVE
CVE
added 2 days ago28 views

CVE-2026-48805

Twig vulnerability CVE-2026-48805: Affected: Twig (PHP template engine); issue arises before 3.27.0 in deprecated internal wrappers in src/Resources/core.php. Root cause: Sandbox state is not forwarded to CoreExtension::checkArrow(), arraySome(), and arrayEvery() when using legacy helpers twig_ch...

5.3CVSS6.1AI score0.00276EPSS
Exploits0References3
Snyk
Snyk
added 2026/07/01 6:55 p.m.4 views

Incorrect Authorization

Overview twig/twig is a flexible, fast, and secure template language for PHP. Affected versions of this package are vulnerable to Incorrect Authorization in the checkSecurity process. An attacker can execute unauthorized filters, tags, or functions by manipulating the sandbox state between render...

8.7CVSS6AI score0.00414EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.24 views

PT-2026-55213

Name of the Vulnerable Software and Affected Versions Twig versions prior to 3.27.0 Description In the template language for PHP, the allow-list verdict for filters, tags, and functions is computed during the construction of a Template instance and cached. This allows a sandboxed render to reuse ...

8.7CVSS6.1AI score0.00414EPSS
Exploits0References7
OSV
OSV
added 2026/06/30 6:41 p.m.4 views

GHSA-P42Q-9PRX-Q5WQ Twig: Sandbox state regression in deprecated internal wrappers in `src/Resources/core.php`

Description The 3.26.0 source-policy hardening changed the signature of CoreExtension::checkArrow to take a boolean $isSandboxed instead of an Environment, and added the same $isSandboxed argument to CoreExtension::arraySome and CoreExtension::arrayEvery. Compiled templates were updated to pass t...

5.3CVSS5.8AI score0.00276EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/06/30 6:41 p.m.8 views

Twig: Sandbox state regression in deprecated internal wrappers in `src/Resources/core.php`

Description The 3.26.0 source-policy hardening changed the signature of CoreExtension::checkArrow to take a boolean $isSandboxed instead of an Environment, and added the same $isSandboxed argument to CoreExtension::arraySome and CoreExtension::arrayEvery. Compiled templates were updated to pass t...

5.3CVSS5.8AI score0.00276EPSS
Exploits0References5Affected Software1
Snyk
Snyk
added 2026/05/27 5:41 p.m.10 views

Incorrect Authorization

Overview twig/twig is a flexible, fast, and secure template language for PHP. Affected versions of this package are vulnerable to Incorrect Authorization via the deprecated twigarraysome, twigarrayevery, and twigcheckarrowinsandbox helper functions. An attacker can bypass the sandbox callback...

5.3CVSS5.8AI score0.00276EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/07 1:43 a.m.7 views

CVE-2026-28479

OpenClaw versions prior to 2026.2.15 use SHA-1 to hash sandbox identifier cache keys for Docker and browser sandbox configurations, which is deprecated and vulnerable to collision attacks. An attacker can exploit SHA-1 collisions to cause cache poisoning, allowing one sandbox configuration to be...

9.1CVSS5.7AI score0.00179EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/05 9:59 p.m.5 views

CVE-2026-28479

OpenClaw versions prior to 2026.2.15 use SHA-1 to hash sandbox identifier cache keys for Docker and browser sandbox configurations, which is deprecated and vulnerable to collision attacks. An attacker can exploit SHA-1 collisions to cause cache poisoning, allowing one sandbox configuration to be...

8.7CVSS5.9AI score0.00179EPSS
Exploits0References4
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.10 views

Sandbox state regression in deprecated internal wrappers in `src/Resources/core.php`

More info at https://symfony.com/blog/cve-2026-48805-sandbox-state-regression-in-deprecated-internal-wrappers-in-src-resources-core-php...

5.3CVSS5.8AI score0.00276EPSS
Exploits0Affected Software1
Rows per page
Query Builder