Design/Logic Flaw

2019-12-2604:15:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.5%

JSON

Halo before 1.2.0-beta.1 allows Server Side Template Injection (SSTI) because TemplateClassResolver.SAFER_RESOLVER is not used in the FreeMarker configuration.

CPENameOperatorVersion
haloeq1.2.0 beta1
haloeq1.1.3 beta1
haloeq1.1.3 beta2
halole1.1.1

Name	Operator	Version
halo	eq	1.2.0 beta1
halo	eq	1.1.3 beta1
halo	eq	1.1.3 beta2
halo	le	1.1.1

References

github.com/halo-dev/halo/compare/v1.1.3-beta.2...v1.2.0-beta.1

github.com/halo-dev/halo/issues/419

github.com/halo-dev/halo/issues/440