A Server Side Template Injection (SSTI) vulnerability in Pentest-Collaboration-Framework v1.0.8 allows an authenticated remote attacker to execute arbitrary code through /project/PROJECTNAME/reports/.
CPE | Name | Operator | Version |
---|---|---|---|
pentest_collaboration_framework | eq | 1.0.8 |