CVE-2026-47732
HIGH SEVERITYVulnerability Description
Twig: Sandbox: multiple `__toString()` policy bypasses via unguarded string coercion points
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
twig/twig
External References
- https://github.com/twigphp/Twig/security/advisories/GHSA-pr2w-4gpj-cpq4
- https://github.com/FriendsOfPHP/security-advisories/blob/master/twig/twig/CVE-2026-47732.yaml
- https://github.com/twigphp/Twig/releases/tag/v3.26.0
- https://symfony.com/cve-2026-47732
- https://github.com/advisories/GHSA-pr2w-4gpj-cpq4
Discussion (0)
Add Comment
No comments yet. Be the first!