Medium severity4.3NVD Advisory· Published Nov 13, 2021· Updated Jun 17, 2026
CVE-2021-3932
CVE-2021-3932
Description
twill is vulnerable to Cross-Site Request Forgery (CSRF)
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
area17/twillPackagist | < 1.2.5 | 1.2.5 |
area17/twillPackagist | >= 2.0.0, < 2.5.3 | 2.5.3 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
8- github.com/area17/twill/commit/81d80d1fbbdd8bb73c020f03c623fd4487bd9b78nvdPatchThird Party AdvisoryWEB
- huntr.dev/bounties/6ef21e34-f6d9-445a-b657-375c53dc2b43nvdExploitPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-f99g-pg48-wrfcghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3932ghsaADVISORY
- github.com/area17/twill/commit/5cded9fcghsaWEB
- github.com/area17/twill/commits/bab94c1eghsaWEB
- github.com/area17/twill/releases/tag/1.2.5ghsaWEB
- github.com/area17/twill/releases/tag/2.5.3ghsaWEB
News mentions
0No linked articles in our index yet.