Количество 2
Количество 2
CVE-2020-12790
больше 5 лет назад
In the SEOmatic plugin before 3.2.49 for Craft CMS, helpers/DynamicMeta.php does not properly sanitize the URL. This leads to Server-Side Template Injection and credentials disclosure via a crafted Twig template after a semicolon.
CVSS3: 7.5
EPSS: Низкий
GHSA-23q7-59jj-2pj4
больше 3 лет назад
SEOmatic for CraftCMS allows Server-Side Template Injection
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-12790 In the SEOmatic plugin before 3.2.49 for Craft CMS, helpers/DynamicMeta.php does not properly sanitize the URL. This leads to Server-Side Template Injection and credentials disclosure via a crafted Twig template after a semicolon. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| GHSA-23q7-59jj-2pj4 SEOmatic for CraftCMS allows Server-Side Template Injection | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20