October is a Content Management System (CMS) and web platform to assist with development workflow. An authenticated backend user with the `editor.cms_pages`, `editor.cms_layouts`, or `editor.cms_partials` permissions who would normally not be permitted to provide PHP code to be executed by the CMS due to `cms.safe_mode` being enabled can write specific Twig code to escape the Twig sandbox and execute arbitrary PHP. This issue has been patched in 3.4.15.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HOctobercms October
APPOctobercms3.0.0 – 3.4.15 (bez)
Related vulnerabilities
An issue was discovered in October through build 471. It reactivates an old session ID (which had been invalid...
October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creatin...
October CMS build 412 is vulnerable to PHP code execution in the asset manager functionality resulting in site...
October CMS build 412 is vulnerable to Apache configuration modification via file upload functionality resulti...
octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system pa...