CVE-2024-45411

Published: 2024-09-09T19:15Z

Last Modified: 2024-11-21T09:37Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Twig is a template language for PHP. Under some circumstances, the sandbox security checks are not run which allows user-contributed templates to bypass the sandbox restrictions. This vulnerability is fixed in 1.44.8, 2.16.1, and 3.14.0. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt