Twig: `template_from_string()` escapes a SourcePolicy-driven sandbox via synthesized template name

Description When the sandbox is enabled selectively via SourcePolicyInterface and not globally, a sandboxed template that is allowed to call templatefromstring and include can render an arbitrary inner template with no security policy enforcement. Environment::createTemplate compiles the inner...

CVE-2026-48527

creationtimestamp| type| source ---|---|--- 2026-05-21 20:37:15+00:00| published-proof-of-concept| https://github.com/haxtheweb/issues/security/advisories/GHSA-g2g8-95qg-v35h 2026-05-29 15:37:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmyuju2ije22 2026-05-30 23:01:15+00:00|...

CVE-2026-48525

creationtimestamp| type| source ---|---|--- 2026-05-21 20:36:11+00:00| published-proof-of-concept| https://github.com/jpadilla/pyjwt/security/advisories/GHSA-w7vc-732c-9m39 2026-05-28 17:48:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwleu26lh2k 2026-06-15 19:41:20+00:00|...

CVE-2026-48526

creationtimestamp| type| source ---|---|--- 2026-05-21 20:35:04+00:00| published-proof-of-concept| https://github.com/jpadilla/pyjwt/security/advisories/GHSA-xgmm-8j9v-c9wx 2026-05-28 17:38:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwksx74os2e 2026-06-04 08:21:13+00:00|...

CVE-2026-48523

creationtimestamp| type| source ---|---|--- 2026-05-21 20:34:37+00:00| published-proof-of-concept| https://github.com/jpadilla/pyjwt/security/advisories/GHSA-jq35-7prp-9v3f 2026-05-28 17:43:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwl3vmqup2r...

CVE-2026-9133

creationtimestamp| type| source ---|---|--- 2026-05-21 19:54:16+00:00| seen| https://bsky.app/profile/eyalestrin.bsky.social/post/3mmf75if6um2a...

CVE-2026-9114

creationtimestamp| type| source ---|---|--- 2026-05-21 19:37:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmf66sc66s2v 2026-05-25 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260526 2026-05-26 18:00:00+00:00| seen|...

CVE-2026-48240

creationtimestamp| type| source ---|---|--- 2026-05-21 19:32:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmf5w6wh5e2c...

CVE-2026-48213

creationtimestamp| type| source ---|---|--- 2026-05-21 19:22:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmf5ebuiop2c...

CVE-2026-48239

creationtimestamp| type| source ---|---|--- 2026-05-21 19:12:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmf4tno6jl2h...

CVE-2026-48238

creationtimestamp| type| source ---|---|--- 2026-05-21 19:09:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmf4mwpxx22k...

CVE-2026-48235

creationtimestamp| type| source ---|---|--- 2026-05-21 19:00:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmf45erzqv2g...

CVE-2026-48243

creationtimestamp| type| source ---|---|--- 2026-05-21 18:55:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmf3u2gu672i...

MAL-2026-4288 Malicious code in @jaggle/resizeobserves (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fe4b050d79ecfc702c9222cf3347e49d4530efd23a2120ee040ef32e0a76e4f Package name impersonates the popular @juggle/resize-observer j→j substitution and pluralized 'resizeobserves' and the README is copied verbatim from...

CVE-2026-9119

creationtimestamp| type| source ---|---|--- 2026-05-21 18:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmf2tk7jtv2o 2026-05-25 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260526 2026-05-26 18:00:00+00:00| seen|...

CVE-2026-47243

creationtimestamp| type| source ---|---|--- 2026-05-21 18:26:35+00:00| published-proof-of-concept| https://github.com/kata-containers/kata-containers/security/advisories/GHSA-2gv2-cffp-j227 2026-05-21 19:08:18+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmf4lcuoc42m 2026-05-...

CVE-2026-48241

Open ISES Tickets before 3.44.2 contains hardcoded MySQL database credentials in loader.php a public-facing database utility that are committed to the source repository. Any actor with access to the public source tree or an unauthenticated attacker with read access to the file on a deployed...

CVE-2025-68110

creationtimestamp| type| source ---|---|--- 2026-05-21 18:06:05+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mmez427w3f2u...

EUVD-2026-31325

Open ISES Tickets before 3.44.2 embeds a hardcoded WhitePages reverse-phone API key in wp1.php that is committed to the public source repository. Any actor with read access to the source tree can extract the key and use it to make third-party API calls billed to or rate-limited against the origin...

CVE-2026-48241

Open ISES Tickets before 3.44.2 contains hardcoded MySQL database credentials in loader.php a public-facing database utility that are committed to the source repository. Any actor with access to the public source tree or an unauthenticated attacker with read access to the file on a deployed...