CVE-2018-13818
published 2018-07-10CVE-2018-13818: Twig before 2.4.4 allows Server-Side Template Injection (SSTI) via the search search_key parameter. NOTE: the vendor points out that Twig itself is not a web…
PriorityP353critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
6.99%
93.3th percentile
Twig before 2.4.4 allows Server-Side Template Injection (SSTI) via the search search_key parameter. NOTE: the vendor points out that Twig itself is not a web application and states that it is the responsibility of web applications using Twig to properly wrap input to it
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| symfony | twig | < 2.4.4 | 2.4.4 |
| twig | twig | >= 0 < 2.4.6-1 | 2.4.6-1 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rgff-87c8-rh44: ** DISPUTED ** Twig before 2
ghsa_unreviewed·2022-05-14
CVE-2018-13818 [CRITICAL] CWE-94 GHSA-rgff-87c8-rh44: ** DISPUTED ** Twig before 2
** DISPUTED ** Twig before 2.4.4 allows Server-Side Template Injection (SSTI) via the search search_key parameter. NOTE: the vendor points out that Twig itself is not a web application and states that it is the responsibility of web applications using Twig to properly wrap input to it.
OSV
CVE-2018-13818: ** DISPUTED ** Twig before 2
osv·2018-07-10·CVSS 9.8
CVE-2018-13818 [CRITICAL] CVE-2018-13818: ** DISPUTED ** Twig before 2
** DISPUTED ** Twig before 2.4.4 allows Server-Side Template Injection (SSTI) via the search search_key parameter. NOTE: the vendor points out that Twig itself is not a web application and states that it is the responsibility of web applications using Twig to properly wrap input to it.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/twigphp/Twig/blob/2.x/CHANGELOGhttps://github.com/twigphp/Twig/commit/eddb97148ad779f27e670e1e3f19fb323aedafebhttps://github.com/twigphp/Twig/issues/2743https://mobile.twitter.com/jameel_nabbo/status/1032593354704515072?s=20https://www.exploit-db.com/exploits/44102/https://github.com/twigphp/Twig/blob/2.x/CHANGELOGhttps://github.com/twigphp/Twig/commit/eddb97148ad779f27e670e1e3f19fb323aedafebhttps://github.com/twigphp/Twig/issues/2743https://mobile.twitter.com/jameel_nabbo/status/1032593354704515072?s=20https://www.exploit-db.com/exploits/44102/
2018-07-10
Published