Critical severityNVD Advisory· Published Dec 1, 2023· Updated Aug 2, 2024
October CMS safe mode bypass using Twig sandbox escape
CVE-2023-44382
Description
October is a Content Management System (CMS) and web platform to assist with development workflow. An authenticated backend user with the editor.cms_pages, editor.cms_layouts, or editor.cms_partials permissions who would normally not be permitted to provide PHP code to be executed by the CMS due to cms.safe_mode being enabled can write specific Twig code to escape the Twig sandbox and execute arbitrary PHP. This issue has been patched in 3.4.15.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
october/systemPackagist | >= 3.0.0, < 3.4.15 | 3.4.15 |
Affected products
1- Range: >= 3.0.0, < 3.4.15
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/advisories/GHSA-p8q3-h652-65vxghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-44382ghsaADVISORY
- github.com/octobercms/october/security/advisories/GHSA-p8q3-h652-65vxghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.