CVE-2018-14716

Posted on by admin

CVE-2018-14716

A Server Side Template Injection (SSTI) was discovered in the SEOmatic plugin before 3.1.4 for Craft CMS, because requests that don’t match any elements incorrectly generate the canonicalUrl, and can lead to execution of Twig code.

Source: CVE-2018-14716

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다