Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:20 p.m.11 views

CVE-2026-41258

OpenMRS is an open source electronic medical record system platform. From 2.7.0 to before 2.7.9 and 2.8.6, the ConceptReferenceRangeUtility.evaluateCriteria method in OpenMRS Core evaluates database-stored criteria strings as Apache Velocity templates without any sandbox configuration. The...

9.1CVSS5.4AI score0.00317EPSS
Exploits0References1
OSV
OSV
added 2026/05/21 9:25 p.m.6 views

GHSA-24X9-R6Q4-Q93W Twig: `template_from_string()` escapes a SourcePolicy-driven sandbox via synthesized template name

Description When the sandbox is enabled selectively via SourcePolicyInterface and not globally, a sandboxed template that is allowed to call templatefromstring and include can render an arbitrary inner template with no security policy enforcement. Environment::createTemplate compiles the inner...

6.1AI score0.00031EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2015/08/26 12:0 a.m.29 views

Debian Security Advisory DSA 3343-1 (twig - security update)

James Kettle, Alain Tiemblo, Christophe Coevoet and Fabien Potencier discovered that twig, a templating engine for PHP, did not correctly process its input. End users allowed to submit twig templates could use specially crafted code to trigger remote code execution, even in sandboxed templates...

6.8CVSS0.1AI score0.03398EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/08/12 12:0 a.m.25 views

pear-twig -- remote code execution

Fabien Potencier reports: End users can craft valid Twig code that allows them to execute arbitrary code RCEs via the self variable, which is always available, even in sandboxed templates...

6.8CVSS7.3AI score0.03398EPSS
Exploits0References1
Rows per page
Query Builder