Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:18 p.m.10 views

CVE-2026-9558

A Server-Side Template Injection SSTI vulnerability exists in Mautic's theme engine. The platform renders uploaded Twig templates without a sandbox or strict function restrictions. Authenticated users with permissions to create or upload themes can abuse this to execute arbitrary code on the...

9.9CVSS6.1AI score0.00439EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/29 10:1 a.m.9 views

CVE-2026-9558

A Server-Side Template Injection SSTI vulnerability exists in Mautic's theme engine. The platform renders uploaded Twig templates without a sandbox or strict function restrictions. Authenticated users with permissions to create or upload themes can abuse this to execute arbitrary code on the...

9.9CVSS6.3AI score0.00439EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/29 10:1 a.m.9 views

CVE-2026-9558

A Server-Side Template Injection SSTI vulnerability exists in Mautic's theme engine. The platform renders uploaded Twig templates without a sandbox or strict function restrictions. Authenticated users with permissions to create or upload themes can abuse this to execute arbitrary code on the...

9.9CVSS6.3AI score0.00439EPSS
Exploits0References1
CVE
CVE
added 2026/05/29 10:1 a.m.39 views

CVE-2026-9558

This CVE describes a Server-Side Template Injection (SSTI) in Mautic’s theme engine. The platform renders uploaded Twig templates without a sandbox or strict function restrictions. With authenticated access to create or upload themes, an attacker could execute arbitrary code on the hosting server...

9.9CVSS6.3AI score0.00439EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.19 views

PT-2026-44802

Name of the Vulnerable Software and Affected Versions Mautic affected versions not specified Description A Server-Side Template Injection SSTI issue exists in the theme engine. The platform renders uploaded Twig templates without a sandbox or strict function restrictions. Authenticated users with...

9.9CVSS6.3AI score0.00439EPSS
Exploits0References7
Rows per page
Query Builder