Lucene search
GitHub Advisory DatabaseGHSA-W7VM-4V3J-VGPWHistoryAug 04, 2023 - 3:30 p.m.
PyroCMS remote code execution vulnerability
2023-08-0415:30:15
GitHub Advisory Database
github.com
13
pyrocms
3.9
remote code execution
vulnerability
server-side template injection
ssti
malicious attacker
arbitrary code
software
0.006 Low
EPSS
Percentile
78.2%
PyroCMS 3.9 contains a remote code execution (RCE) vulnerability that can be exploited through a server-side template injection (SSTI) flaw. This vulnerability allows a malicious attacker to send customized commands to the server and execute arbitrary code on the affected system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pyrocms/pyrocms | le | 3.9 |
Related
osv
osv
CVE-2023-29689
2023-08-04 15:15:10
PyroCMS remote code execution vulnerability
2023-08-04 15:30:15
cvelist
cvelist
CVE-2023-29689
2023-08-04 00:00:00
cve
cve
CVE-2023-29689
2023-08-04 15:15:10
prion
prion
Remote code execution
2023-08-04 15:15:00
veracode
veracode
Server-Side Template Injection (SSTI)
2023-08-08 02:46:01
packetstorm
packetstorm
Pyro CMS 3.9 Server-Side Template Injection
2023-08-09 00:00:00
zdt
zdt
Pyro CMS 3.9 - Server-Side Template Injection (SSTI) (Authenticated) Exploit
2023-08-08 00:00:00
exploitdb
exploitdb
Pyro CMS 3.9 - Server-Side Template Injection (SSTI) (Authenticated)
2023-08-08 00:00:00