4 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-23803
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This affects the package latte/latte before 2.10.6. There is a way to bypass allowFunctions that will affect the security of the application. When the template ...
CVE-2021-23803
The CVE affects latte/latte before 2.10.6. A bypass of allowFunctions is possible by inserting control characters (x00–x08) after a function, which bypasses the template restrictions and can compromise application security. The documents do not provide a vendor patch/version remediation; no expli...
CVE-2021-23803 Access Control Bypass
This affects the package latte/latte before 2.10.6. There is a way to bypass allowFunctions that will affect the security of the application. When the template is set to allow/disallow the use of certain functions, adding control characters x00-x08 after the function will bypass these restriction...
CVE-2021-23803
Removed by vendor...