Zurück zur CVE-Übersicht
CVE-2026-48806
NONERisk Signal Score10/100 — NIEDRIG
- Weniger als 24 Stunden alt
Beschreibung
Twig is a template language for PHP. Prior to 3.27.0, ArrayExpression does not guard dynamic mapping keys that are coerced to strings, allowing PHP to invoke __toString() on a Stringable object used as a mapping key without calling SandboxExtension::ensureToStringAllowed(). This issue is fixed in version 3.27.0.
GitHub Advisories
GHSA-5v5v-ww74-355vMEDIUM
Twig: Sandbox `__toString()` policy bypass via dynamic mapping keys
composer/twig/twig→ 3.27.0
GitHub Advisory