Описание
Crafter CMS Crafter Studio vulnerable to Improper Control of Dynamically-Managed Code Resources
Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via FreeMarker static methods.
Пакеты
Наименование
org.craftercms:crafter-studio
maven
Затронутые версииВерсия исправления
>= 3.1.0, < 3.1.18
3.1.18
Связанные уязвимости
CVSS3: 7.6
nvd
больше 3 лет назад
Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via FreeMarker static methods.