Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:42 a.m.6 views

CVE-2023-30331

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

9.8CVSS7.2AI score0.00926EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2023/05/04 3:30 a.m.3 views

cc.hiver:hiver-core (>=1.0 <=1.0.4), cn.eova:eova (>=1.5.0 <=1.6.0) +199 more potentially affected by CVE-2023-30331 via com.ibeetl:beetl (>=2.2.5 <=3.15.0.RELEASE)

com.ibeetl:beetl MAVEN version =2.2.5, =1.0, =1.5.0, =3.0.0, =1.0, =6.2, =0.1.2, =5.0.5, =5.1.5, =1.0.0, =1.0.0, =1.5.5 and more Source cves: CVE-2023-30331 Source advisory: OSV:GHSA-M69H-4FRQ-VWQ7...

9.8CVSS7.8AI score0.00926EPSS
Exploits1
NVD
NVD
added 2023/05/04 3:15 a.m.32 views

CVE-2023-30331

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

9.8CVSS9.5AI score0.00926EPSS
Exploits1References2
CVE
CVE
added 2023/05/04 12:0 a.m.51 views

CVE-2023-30331

CVE-2023-30331 affects Beetl v3.15.0 where the render function is vulnerable to server-side template injection (SSTI). The root cause is insufficient checks in the render path, enabling a crafted payload to execute code on the server. The issue is rated CRITICAL (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U...

9.8CVSS9.4AI score0.00926EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/05/04 12:0 a.m.30 views

CVE-2023-30331

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

9.7AI score0.00926EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/05/04 12:0 a.m.9 views

CVE-2023-30331

An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection SSTI via a crafted payload...

9.5AI score0.00926EPSS
Exploits1References2
Rows per page
Query Builder