twig/twig Security Advisories for v3.4.2 (2)
-
[HIGH] Possible sandbox bypass
PKSA-6319-ffpf-gx66 CVE-2024-45411 GHSA-6j75-5wfj-gh66
Affected version: >=1.0.0,<1.44.7|>=2.0.0,<2.16.0|>=3.0.0,<3.11.0|>=3.12.0,<3.14.0
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Possibility to load a template outside a configured directory when using the filesystem loader
PKSA-n7sg-8f52-pqtf CVE-2022-39261 GHSA-52m2-vc4m-jj33
Affected version: >=1.0.0,<1.44.7|>=2.0.0,<2.15.3|>=3.0.0,<3.4.3
Reported by:
GitHub, FriendsOfPHP/security-advisories