Описание
Arbitrary code execution in Magnolia CMS
An issue in the Freemark Filter of Magnolia CMS v6.2.11 and below allows attackers to bypass security restrictions and execute arbitrary code via a crafted FreeMarker payload.
Пакеты
Наименование
info.magnolia:magnolia-core
maven
Затронутые версииВерсия исправления
< 6.2.12
6.2.12
Связанные уязвимости
CVSS3: 9.8
nvd
почти 4 года назад
An issue in the Freemark Filter of Magnolia CMS v6.2.11 and below allows attackers to bypass security restrictions and execute arbitrary code via a crafted FreeMarker payload.