Search CVE reports
11 – 20 of 26 results
[Unknown description]
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
[Unknown description]
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
[Unknown description]
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
[Unknown description]
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
[Unknown description]
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
[Unknown description]
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
[Unknown description]
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
Twig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass vulnerability when using a SourcePolicyInterface that allows attackers with template rendering capabilities to pass arbitrary PHP callables to sort, filter,...
1 affected package
php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
Twig is a template language for PHP. When using the ?? operator, output escaping was missing for the expression on the left side of the operator. This vulnerability is fixed in 3.19.0.
2 affected packages
php-twig, twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| php-twig | Not affected | Not affected | Not affected | Not affected | — |
| twig | Not in release | Not in release | Not in release | Not in release | Needs evaluation |
Twig is a template language for PHP. In a sandbox, an attacker can access attributes of Array-like objects as they were not checked by the security policy. They are now checked via the property policy and the `__isset()` method is...
2 affected packages
twig, php-twig
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| twig | Not in release | Not in release | Not in release | Not in release | Needs evaluation |
| php-twig | Not affected | Vulnerable | Vulnerable | Vulnerable | — |