twig/twig
php · twig/twigHeads-up
twig/twig: XSS fix in HtmlDumper escapes template and profile names
Twig\Profiler\Dumper\HtmlDumper now escapes template and profile names with htmlspecialchars() before outputting them in HTML.
09 Jun 2026 · schedule it
php · twig/twigCritical
Twig Sandbox Bypass via SourcePolicyInterface for sort/filter/map/reduce
Twig's sandbox restriction for callback-accepting filters (sort, filter, map, reduce) is not always applied when using a SourcePol
09 Jun 2026 · act now
php · twig/twigCritical
Twig Sandbox Bypass via __toString() Calls
The sandbox security mechanism was bypassed because SandboxNodeVisitor only wrapped a hardcoded list of AST nodes in CheckToString
09 Jun 2026 · act now