2 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-46628
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Twig is a template language for PHP. Prior to 3.26.0, the deprecated spaceless filter is registered as safe for HTML, causing Twig autoescaping to emit...
PT-2026-42171
Name of the Vulnerable Software and Affected Versions Twig affected versions not specified Description The spaceless filter is registered with is safe = 'html', causing Twig's autoescaper to skip escaping its output in HTML contexts. This allows attacker-controlled input containing markup to be...