Количество 2
Количество 2
CVE-2020-11056
почти 6 лет назад
In Sprout Forms before 3.9.0, there is a potential Server-Side Template Injection vulnerability when using custom fields in Notification Emails which could lead to the execution of Twig code. This has been fixed in 3.9.0.
CVSS3: 7.4
EPSS: Низкий
GHSA-px8v-hxxx-2rgh
почти 6 лет назад
Potential Code Injection in Sprout Forms
CVSS3: 7.4
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11056 In Sprout Forms before 3.9.0, there is a potential Server-Side Template Injection vulnerability when using custom fields in Notification Emails which could lead to the execution of Twig code. This has been fixed in 3.9.0. | CVSS3: 7.4 | 1% Низкий | почти 6 лет назад |
| GHSA-px8v-hxxx-2rgh Potential Code Injection in Sprout Forms | CVSS3: 7.4 | 1% Низкий | почти 6 лет назад |
Уязвимостей на страницу
20