CVE-2026-48808
MEDIUM SEVERITYVulnerability Description
Twig: Sandbox property allowlist bypass via the `column` filter under `SourcePolicyInterface`
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
twig/twig
External References
- https://github.com/twigphp/Twig/security/advisories/GHSA-h8vq-8gpg-mhcg
- https://github.com/FriendsOfPHP/security-advisories/blob/master/twig/twig/CVE-2026-48808.yaml
- https://github.com/twigphp/Twig/releases/tag/v3.27.0
- https://symfony.com/blog/cve-2026-48808-sandbox-property-allowlist-bypass-via-the-column-filter-under-sourcepolicyinterface
- https://github.com/advisories/GHSA-h8vq-8gpg-mhcg
Discussion (0)
Add Comment
No comments yet. Be the first!