Lucene search

K

MitreCVELIST:CVE-2021-46362

HistoryFeb 11, 2022 - 8:08 p.m.

CVE-2021-46362

2022-02-1120:08:42

mitre

www.cve.org

0.003 Low

EPSS

Percentile

68.0%

A Server-Side Template Injection (SSTI) vulnerability in the Registration and Forgotten Password forms of Magnolia v6.2.3 and below allows attackers to execute arbitrary code via a crafted payload entered into the fullname parameter.

References

docs.magnolia-cms.com/product-docs/6.2/Releases/Release-notes-for-Magnolia-CMS-6.2.4.html#_security_advisory

github.com/DrunkenShells/Disclosures/tree/master/CVE-2021-46362-Unauthenticated%20SSTI-Magnolia%20CMS

0.003 Low

EPSS

Percentile

68.0%

Related for CVELIST:CVE-2021-46362

cve1 prion1 cnvd1 nvd1