Lucene search

K

Esigate Security Vulnerabilities

cve
cve

CVE-2018-1000854

esigate.org esigate version 5.2 and earlier contains a CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in ESI directive with user specified XSLT that can result in Remote Code Execution. This attack appear to be exploitable...

9.8CVSS

9.7AI Score

0.003EPSS

2022-10-03 04:21 PM
42