CVE-2024-45411 - Twig Unvalidated Template Injection

2 months ago 26
ARTICLE AD BOX
CVE ID : CVE-2024-45411
Published : Sept. 9, 2024, 7:15 p.m. | 24 minutes ago
Description : Twig is a template language for PHP. Under some circumstances, the sandbox security checks are not run which allows user-contributed templates to bypass the sandbox restrictions. This vulnerability is fixed in 1.44.8, 2.16.1, and 3.14.0.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article