Access Restriction Bypass

Affecting twig/twig package, versions <1.20.0

Do your applications use this vulnerable package? Test your applications

Overview

twig/twig is a flexible, fast, and secure template language for PHP.

Affected versions of this package are vulnerable to Access Restriction Bypass. The displayBlock function Template.php, when Sandbox mode is enabled, allows remote attackers to execute arbitrary code via the _self variable in a template.

Remediation

Upgrade twig/twig to version 1.20.0 or higher.

References

CVSS Score

6.3
medium severity
  • Attack Vector
    Network
  • Attack Complexity
    Low
  • Privileges Required
    None
  • User Interaction
    Required
  • Scope
    Unchanged
  • Confidentiality
    Low
  • Integrity
    Low
  • Availability
    Low
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Credit
James Kettle
CVE
CVE-2015-7809
CWE
CWE-264
Snyk ID
SNYK-PHP-TWIGTWIG-472639
Disclosed
12 Aug, 2015
Published
20 Nov, 2019