Lucene search
K

5 matches found

NVD
NVD
added 2015/11/06 9:59 p.m.22 views

CVE-2015-7809

The displayBlock function Template.php in Sensio Labs Twig before 1.20.0, when Sandbox mode is enabled, allows remote attackers to execute arbitrary code via the self variable in a template...

6.8CVSS7.4AI score0.03398EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2015/11/06 9:59 p.m.32 views

CVE-2015-7809

The displayBlock function Template.php in Sensio Labs Twig before 1.20.0, when Sandbox mode is enabled, allows remote attackers to execute arbitrary code via the self variable in a template...

6.8CVSS6AI score0.03398EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/11/06 9:0 p.m.23 views

CVE-2015-7809

The displayBlock function Template.php in Sensio Labs Twig before 1.20.0, when Sandbox mode is enabled, allows remote attackers to execute arbitrary code via the self variable in a template...

7.3AI score0.03398EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2015/11/06 9:0 p.m.25 views

CVE-2015-7809

Removed by vendor...

6.8CVSS6.7AI score0.03398EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/10/15 12:0 a.m.22 views

FreeBSD : pear-twig -- remote code execution (705b759c-7293-11e5-a371-14dae9d210b8)

Fabien Potencier reports : End users can craft valid Twig code that allows them to execute arbitrary code RCEs via the self variable, which is always available, even in sandboxed templates. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

6.8CVSS5.5AI score0.03398EPSS
Exploits0References3
Rows per page
Query Builder