CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 5 days ago•8 views

Debian dsa-6311 : php-twig - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6311 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6311-1 [email protected] https://www.debian.org/securit...

9.9CVSS5.9AI score0.00114EPSS

Exploits0References30

Debian•added 6 days ago•8 views

[SECURITY] [DSA 6311-1] php-twig security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6311-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 29, 2026 https://www.debian.org/security/faq -...

9.9CVSS5.8AI score0.00114EPSS

Tenable Nessus•added 2026/05/28 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-48808

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Unknown description CVE-2026-48808 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenabl...

Tenable Nessus•added 2026/05/28 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-48806

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Unknown description CVE-2026-48806 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenabl...

Tenable Nessus•added 2026/05/28 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-46636

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - php-twig - None Ubuntu Linux - Unknown description CVE-2026-46636 Note that Nessus relies on the presence of the package as reported by the vendo...

Tenable Nessus•added 2026/05/28 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-48807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Unknown description CVE-2026-48807 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenabl...

Tenable Nessus•added 2026/05/28 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-48805

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - php-twig - None Ubuntu Linux - Unknown description CVE-2026-48805 Note that Nessus relies on the presence of the package as reported by the vendo...

Tenable Nessus•added 2026/05/21 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-46637

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - php-twig - None Ubuntu Linux - Unknown description CVE-2026-46637 Note that Nessus relies on the presence of the package as reported by the vendo...

Tenable Nessus•added 2026/05/21 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-46634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Twig: templatefromstring escapes a SourcePolicy-driven sandbox via synthesized template name CVE-2026-46634 Note that Nessus relies on the presence of the packa...

Tenable Nessus•added 2026/05/21 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-46627

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - php-twig - None Ubuntu Linux - Unknown description CVE-2026-46627 Note that Nessus relies on the presence of the package as reported by the vendo...

Tenable Nessus•added 2026/05/21 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-46638

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Twig: % sandbox %% include % skips checkSecurity on cached templates incomplete fix for CVE-2024-45411 CVE-2026-46638 Note that Nessus relies on the presence of...

8.6CVSS7.3AI score0.00144EPSS

Tenable Nessus•added 2026/05/21 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-46635

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Twig: Sandbox property allowlist bypass via the column filter arraycolumn on objects CVE-2026-46635 Note that Nessus relies on the presence of the package as...

Debian•added 2025/05/29 7:16 a.m.•5 views

[SECURITY] [DLA 4186-1] php-twig security update

Debian LTS Advisory DLA-4186-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany May 28, 2025 https://wiki.debian.org/LTS Package : php-twig Version : 2.14.3-1+deb11u4 CVE ID : CVE-2024-51754 Twig is a template language for PHP. In a sandbox, an attacker can call...

2.2CVSS5.7AI score0.00135EPSS

Tenable Nessus•added 2025/05/29 12:0 a.m.•7 views

Debian dla-4186 : php-twig - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4186 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4186-1 [email protected] https://www.debian.org/lts/security/...

2.2CVSS5.5AI score0.00135EPSS

Exploits0References4

OpenVAS•added 2025/05/29 12:0 a.m.•6 views

Debian: Security Advisory (DLA-4186-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.2CVSS7.1AI score0.00135EPSS

OSV•added 2025/05/28 12:0 a.m.•2 views

DLA-4186-1 php-twig - security update

Bulletin has no description...

2.2CVSS7.2AI score0.00135EPSS

Redos•added 2025/05/15 12:0 a.m.•7 views

ROS-20250515-02

A vulnerability in the PHP Twig template language is due to sandbox security checks not being executed under certain circumstances. Exploitation of the vulnerability could allow an attacker acting remotely to bypass the implemented security restrictions. remotely to bypass the implemented securit...

8.6CVSS8.7AI score0.00144EPSS

Redos•added 2025/05/15 12:0 a.m.•11 views

ROS-20250515-01

8.6CVSS8.7AI score0.00144EPSS