51 matches found
MJML vulnerable to path traversal
MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document...
@27works/posto (>=2.0.0 <=2.0.2), @abdul778/page-editor (>=0.1.0 <=0.41.0) +618 more potentially affected by CVE-2020-12827 via mjml (>=0.1.0 <=4.5.1)
mjml NPM version =0.1.0, =2.0.0, =0.1.0, =0.1.0, =0.1.0, =0.0.122, =0.16.9, =1.0.4, =1.0.0, =2.0.0, =12.5.0, =1.0.0, =2.2.7-bb.3, =2.2.7-bb.7 - @becomes/mjml =1.0.0 - @bedrock-foundation/sdk =0.0.2 and more Source cves: CVE-2020-12827 Source advisory: OSV:GHSA-4HCH-R9XF-6VFR...
Mailjet MJML Path Traversal Vulnerability
Mailjet MJML is a responsive email framework from the French company Mailjet . A path traversal vulnerability exists in Mailjet MJML 4.6.2 and earlier versions. An attacker could send a specially crafted e-mail containing the sequence '/... /' sequence to view arbitrary files on the system...
CVE-2020-12827
MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document...
CVE-2020-12827
MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document...
Path traversal
MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document...
CVE-2020-12827
MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document...
CVE-2020-12827
Summary: MJML contains a path traversal vulnerability via the mj-include directive. The original CVE-2020-12827 affected MJML prior to 4.6.3, which was disclosed as a path traversal issue when processing mj-include. The connected advisories confirm that the fix was incomplete in subsequent update...
PT-2020-13277
Name of the Vulnerable Software and Affected Versions MJML versions prior to 4.6.3 Description The issue is related to a path traversal vulnerability when processing the mj-include directive within an MJML document. Recommendations For versions prior to 4.6.3, update to version 4.6.3 or later to...
MJML 4.6.2 Path Traversal
RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: MJML Vendor URL: https://github.com/mjmlio/mjml/ Type: Path Traversal CWE-22 Date found: 2020-04-28 Date published: 2020-06-14 CVSSv3 Score: 7.2 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L...
MJML 4.6.2 Path Traversal Vulnerability
Exploit for php platform in category web applications 1. ADVISORY INFORMATION ======================= Product: MJML Vendor URL: https://github.com/mjmlio/mjml/ Type: Path Traversal CWE-22 Date found: 2020-04-28 Date published: 2020-06-14 CVSSv3 Score: 7.2...