Описание
Alkacon OpenCMS CSV Injection via New User module
Alkacon OpenCMS v10.5.4 and before is affected by CSV (aka Excel Macro) Injection in the module New User (/opencms/system/workplace/admin/accounts/user_new.jsp) via the First Name or Last Name.
Пакеты
Наименование
org.opencms:opencms-core
maven
Затронутые версииВерсия исправления
< 11.0.0
11.0.0
Связанные уязвимости
CVSS3: 7.8
nvd
больше 6 лет назад
Alkacon OpenCMS v10.5.4 and before is affected by CSV (aka Excel Macro) Injection in the module New User (/opencms/system/workplace/admin/accounts/user_new.jsp) via the First Name or Last Name.