mustache/mustache is vulnerable to command injection. The vulnerability exists in section
function of Compiler.php
which allows an attacker to control the value of the sections tag and execute arbitrary php code.
CPE | Name | Operator | Version |
---|---|---|---|
mustache/mustache | le | v2.14.0 | |
mustache/mustache | le | v2.14.0 |