Lucene search
GoogleOSV:CVE-2020-28925HistoryDec 30, 2020 - 7:15 p.m.
CVE-2020-28925
2020-12-3019:15:13
Google
osv.dev
4
bolt
twig context
filter options
php security
Bolt before 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the “How to Harden Your PHP for Better Security” guidance.
Related
veracode
veracode
Authorization Bypass
2020-12-31 01:40:04
cve
cve
CVE-2020-28925
2020-12-30 19:15:13
cbl_mariner
cbl_mariner
CVE-2020-28925 affecting package bolt 0.9.2-2
2024-09-21 03:20:41
osv
osv
OS Command injection in Bolt
2021-05-06 18:53:29
prion
prion
Design/Logic Flaw
2020-12-30 19:15:00
cvelist
cvelist
CVE-2020-28925
2020-12-30 18:47:18
github
github
OS Command injection in Bolt
2021-05-06 18:53:29
nvd
nvd
CVE-2020-28925
2020-12-30 19:15:13
rosalinux
rosalinux
Advisory ROSA-SA-2021-1809
2021-07-02 16:34:28