Feed items

warning: Declaration of views_handler_argument::init(&$view, &$options) should be compatible with views_handler::init(&$view, $options) in /home/clients/ru/domains/development4web.com/html/sites/all/modules/views/handlers/views_handler_argument.inc on line 48.
warning: Declaration of views_handler_filter_boolean_operator::value_validate(&$form, &$form_state) should be compatible with views_handler_filter::value_validate($form, &$form_state) in /home/clients/ru/domains/development4web.com/html/sites/all/modules/views/handlers/views_handler_filter_boolean_operator.inc on line 111.
warning: Declaration of views_plugin_row_node_view::options_form(&$form, &$form_state) should be compatible with views_plugin_row::options_form($form, &$form_state) in /home/clients/ru/domains/development4web.com/html/sites/all/modules/views/modules/node/views_plugin_row_node_view.inc on line 35.

A Week of Symfony #822 (26 September - 2 October 2022)

This week, Symfony 4.4.46, 5.4.13, 6.0.13 and 6.1.5 maintenance versions were released.

SymfonyCon Disneyland Paris 2022: From monolith to decoupled…wait, why is that one getting bigger?!

SymfonyCon Disneyland Paris 2022 is just around the corner! D-45!

As this event approaches we are proud to announce you the next speaker:

SymfonyCon Disneyland Paris 2022: Calculating what we can’t see: carbon emissions in the cloud

Symfony 6.1.5 released

Symfony 6.1.5 has just been released.
Here is the list of the most important changes since 6.1.4:

Symfony 6.0.13 released

Symfony 6.0.13 has just been released.
Here is the list of the most important changes since 6.0.12:

Symfony 5.4.13 released

Symfony 5.4.13 has just been released.
Here is the list of the most important changes since 5.4.12:

Symfony 4.4.46 released

Symfony 4.4.46 has just been released.
Here is the list of the most important changes since 4.4.45:

SymfonyCon Disneyland Paris 2022: Voice of partner panel discussion: how Platform.sh agency partners drive innovation and growth

SymfonyCon Disneyland Paris 2022 is just around the corner! D-49!

As this event approaches we are proud to announce you the next speaker:

SymfonyCon Disneyland Paris 2022: Building a great product means designing for your users.

Did you notice that a new track appeared in the SymfonyCon Disneyland Paris 2022 program?

We are super excited to announce that new speakers are joining us and that you will discover them every day through the blog posts! Today it is the turn of:

Twig security release: Possibility to load a template outside a configured directory when using the filesystem loader

Affected versions

Twig >1.0.0,<1.44.7 || >2.0.0,<2.15.3 || >3.0.0,<3.4.3 are affected by this security issue.

The issue has been fixed in Twig 1.44.7, 2.15.3 and 3.4.3.

Description

When using the filesystem loader to load templates for which the name is a user input, it is possible to use the source or include statement to read arbitrary files from outside the templates directory when using a namespace like @somewhere/../some.file (in such a case, validation is bypassed).

AddToAny

Feed items