First published: Fri Nov 10 2023(Updated: )
### Description Some Twig filters in CodeExtension use "is_safe=html" but don't actually ensure their input is safe. ### Resolution Symfony now escapes the output of the affected filters. The patch for this issue is available [here](https://github.com/symfony/symfony/commit/9da9a145ce57e4585031ad4bee37c497353eec7c) for branch 4.4. ### Credits We would like to thank Pierre Rudloff for reporting the issue and to Nicolas Grekas for providing the fix.
Credit: security-advisories@github.com security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
composer/symfony/symfony | >=6.0.0<6.3.8 | 6.3.8 |
composer/symfony/symfony | >=5.0.0<5.4.31 | 5.4.31 |
composer/symfony/symfony | >=2.0.0<4.4.51 | 4.4.51 |
composer/symfony/twig-bridge | >=6.0.0<6.3.8 | 6.3.8 |
composer/symfony/twig-bridge | >=5.0.0<5.4.31 | 5.4.31 |
composer/symfony/twig-bridge | >=2.0.0<4.4.51 | 4.4.51 |
SensioLabs Symfony | >=2.0.0<4.4.51 | |
SensioLabs Symfony | >=5.0.0<5.4.31 | |
SensioLabs Symfony | >=6.0.0<6.3.8 | |
Sensiolabs Twig | >=2.0.0<4.4.51 | |
Sensiolabs Twig | >=5.0.0<5.4.31 | |
Sensiolabs Twig | >=6.0.0<6.3.8 | |
>=2.0.0<4.4.51 | ||
>=5.0.0<5.4.31 | ||
>=6.0.0<6.3.8 | ||
>=2.0.0<4.4.51 | ||
>=5.0.0<5.4.31 | ||
>=6.0.0<6.3.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-46734 is medium.
CVE-2023-46734 is a vulnerability in Symphony CodeExtension filters that allows potential cross-site scripting (XSS) attacks.
The potential cross-site scripting (XSS) vulnerabilities in Symphony CodeExtension filters can be exploited by injecting malicious code into user input fields that are not properly sanitized.
To remediate CVE-2023-46734, update Symphony to version 6.3.8 or later or version 5.4.31 or later.
You can find more information about CVE-2023-46734 in the following references: [reference 1](https://github.com/symfony/symfony/security/advisories/GHSA-q847-2q57-wmr3), [reference 2](https://github.com/symfony/symfony/commit/5d095d5feb1322b16450284a04d6bb48d1198f54), [reference 3](https://github.com/symfony/symfony/commit/9da9a145ce57e4585031ad4bee37c497353eec7c).