8 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-24374
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Twig is a template language for PHP. When using the ?? operator, output escaping was missing for the expression on the left side of the operator. This...
CVE-2025-24374
Twig is a template language for PHP. When using the ?? operator, output escaping was missing for the expression on the left side of the operator. This vulnerability is fixed in 3.19.0...
CVE-2025-24374
Twig is a PHP template engine. The vulnerability CVE-2025-24374 concerns missing output escaping for the left side of the null coalescing operator (??). The issue is fixed in Twig 3.19.0. Severity in CVSSv3.1 is MEDIUM (4.3), but the document notes no exploitation details. Connected sources (NVD/...
CVE-2025-24374 Twig fixes a security issue where escaping was missing when using null coalesce operator (??)
Twig is a template language for PHP. When using the ?? operator, output escaping was missing for the expression on the left side of the operator. This vulnerability is fixed in 3.19.0...
CVE-2025-24374 Twig fixes a security issue where escaping was missing when using null coalesce operator (??)
Twig is a template language for PHP. When using the ?? operator, output escaping was missing for the expression on the left side of the operator. This vulnerability is fixed in 3.19.0...
CVE-2025-24374 Twig fixes a security issue where escaping was missing when using null coalesce operator (??)
Twig is a template language for PHP. When using the ?? operator, output escaping was missing for the expression on the left side of the operator. This vulnerability is fixed in 3.19.0...
CVE-2025-24374
creationtimestamp| type| source ---|---|--- 2025-01-29 07:00:56+00:00| seen| https://bsky.app/profile/symfony.com/post/3lgufjj5oh52a 2025-01-29 08:19:01+00:00| seen| https://bsky.app/profile/druid.fi/post/3lgujv2zyt22r 2025-01-29 15:30:44+00:00| seen|...
Missing output escaping for the null coalesce operator
More info at https://symfony.com/blog/twig-cve-2025-24374-missing-output-escaping-for-the-null-coalesce-operator...