Security Advisories - PKSA-kvv6-36cr-fkzb - Packagist.org

PKSA-kvv6-36cr-fkzb Security Advisory

Sandbox does not protect against resource exhaustion

PKSA-kvv6-36cr-fkzb CVE-2026-46627

Affected package: twig/twig

Affected version: >=1.0.0,<2.0.0|>=2.0.0,<3.0.0|>=3.0.0,<3.26.0

Reported by:
FriendsOfPHP/security-advisories