Search CVE reports


Toggle filters

1 – 10 of 27 results


CVE-2026-49981

Medium priority
Needs evaluation

Twig is a template language for PHP. Prior to 3.27.0, the per-template filter, tag, and function allow-list verdict is computed when a Template instance is constructed and can remain cached after sandbox state changes between...

2 affected packages

php-twig, twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
twig Not in release Not in release Not in release Needs evaluation
Show less packages

CVE-2026-48808

Medium priority
Needs evaluation

Twig is a template language for PHP. Prior to 3.27.0, the column filter passes the active sandbox state as a boolean but does not forward the current Source to SandboxExtension::checkPropertyAllowed(), so SourcePolicyInterface...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-48807

Medium priority
Needs evaluation

Twig is a template language for PHP. Prior to 3.27.0, the sandbox __toString() checks do not fully cover Traversable values passed to join and replace filters or operands evaluated by the in and not in operators, allowing...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-48806

Medium priority
Needs evaluation

Twig is a template language for PHP. Prior to 3.27.0, ArrayExpression does not guard dynamic mapping keys that are coerced to strings, allowing PHP to invoke __toString() on a Stringable object used as a mapping key...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-48805

Medium priority
Needs evaluation

Twig is a template language for PHP. Prior to 3.27.0, deprecated internal wrappers in src/Resources/core.php do not forward the current sandbox state to CoreExtension::checkArrow(), arraySome(), and arrayEvery(), allowing legacy...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-47732

Medium priority
Needs evaluation

Twig is a template language for PHP. Prior to 3.26.0, several Twig language constructs trigger PHP string coercion on a Stringable operand without consulting SecurityPolicy::checkMethodAllowed(), allowing a sandboxed template...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-47730

Medium priority
Needs evaluation

Twig is a template language for PHP. From 3.0.0 until 3.26.0, Twig\Profiler\Dumper\HtmlDumper writes Profile::getTemplate() and Profile::getName() into HTML output without escaping, allowing attacker-controlled template or profile...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-46640

Medium priority
Needs evaluation

Twig is a template language for PHP. From 3.15.0 until 3.26.0, _self.(<string>) and import-alias dynamic attribute syntax can concatenate an attacker-controlled string into a MacroReferenceExpression name without identifier...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-46639

Medium priority
Needs evaluation

Twig is a template language for PHP. From 3.24.0 until 3.26.0, object-destructuring assignment compiles CoreExtension::getAttribute() with the sandbox argument hardcoded to false, disabling property and method policy checks and...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-46638

Medium priority
Needs evaluation

Twig is a template language for PHP. Prior to 3.26.0, {% sandbox %}{% include %} can include a template that was previously loaded outside the sandbox without re-invoking checkSecurity(), allowing the cached template to use tags,...

1 affected package

php-twig

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
php-twig Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages