Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-39365: [Mail] Renderer email content twig templates in a sandbox (#13347) · pimcore/pimcore@43aa34e

Pimcore is an open source data and experience management platform. Prior to version 10.5.9, the user controlled twig templates rendering in Pimcore/Mail & ClassDefinition\Layout\Text is vulnerable to server-side template injection, which could lead to remote code execution. Version 10.5.9 contains a patch for this issue. As a workaround, one may apply the patch manually.

CVE
Open in Source
#php#rce#auth

Permalink

Browse files

[Mail] Renderer email content twig templates in a sandbox (#13347)

* [Mail] Renderer email content twig templates in a sandbox

* [Mail] Renderer email content twig templates in a sandbox

* [Mail] Renderer email content twig templates in a sandbox

* [Mail] Renderer email content twig templates in a sandbox

* [Mail] Renderer email content twig templates in a sandbox

* [Mail] Renderer email content twig templates in a sandbox

* Apply suggestions from code review

Co-authored-by: Sebastian Blank [email protected]

* Update lib/Templating/TwigDefaultDelegatingEngine.php

Co-authored-by: Jacob Dreesen [email protected]

* [Twig] Renderer user controlled twig templates in a sandbox - review changes #13347

* [Twig] Renderer user controlled twig templates in a sandbox - use custom security policy to whitelist object properties and methods execution by default #13347

* [Twig] Renderer user controlled twig templates in a sandbox - review changes #13347

* [Twig] Renderer user controlled twig templates in a sandbox - fix phpstan #13347

* [Twig] Renderer user controlled twig templates in a sandbox - fix service definition #13347

* [Twig] Renderer user controlled twig templates in a sandbox - docs typo #13347

Co-authored-by: Sebastian Blank [email protected] Co-authored-by: Jacob Dreesen [email protected]

  • Loading branch information

Related news

GHSA-5qxq-vgmm-q39m: RCE vulnerability in Pimcore/Mail & Dynamic Text Layout

### Impact The user controlled twig templates rendering in `Pimcore/Mail` & `ClassDefinition\Layout\Text` is vulnerable to server-side template Injection RCE. ### Patches Update to version 10.5.9 or apply this patch manually https://github.com/pimcore/pimcore/pull/13347.patch ### Workarounds Apply https://github.com/pimcore/pimcore/pull/13347.patch manually. ### References Credits: @nth347 from Viettel Cyber Security

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE