Lucene search
K

5 matches found

Github Security Blog
Github Security Blog
added 2022/06/03 12:0 a.m.43 views

Server-Side Template Injection in formio

A Server-Side Template Injection SSTI was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL. NOTE: the email templating service was removed after 2020. Additionally, the vendor disputes this issue indicating this is sandboxed and on...

9.8CVSS9.9AI score0.02177EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/06/02 2:15 p.m.25 views

CVE-2020-28246

A Server-Side Template Injection SSTI was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL. NOTE: the email templating service was removed after 2020. Additionally, the vendor disputes this issue indicating this is sandboxed and on...

9.8CVSS0.02177EPSS
Exploits0References2
OSV
OSV
added 2022/06/02 2:15 p.m.13 views

CVE-2020-28246

A Server-Side Template Injection SSTI was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL. NOTE: the email templating service was removed after 2020. Additionally, the vendor disputes this issue indicating this is sandboxed and on...

9.8CVSS9.8AI score
Exploits0References2
Prion
Prion
added 2022/06/02 2:15 p.m.14 views

Remote code execution

A Server-Side Template Injection SSTI was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL...

7.5CVSS9.8AI score0.02177EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/05/31 12:0 a.m.27 views

CVE-2020-28246

A Server-Side Template Injection SSTI was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL. NOTE: the email templating service was removed after 2020. Additionally, the vendor disputes this issue indicating this is sandboxed and on...

9.9AI score0.02177EPSS
Exploits0References2
Rows per page
Query Builder