symphonycms/symphony-2 is vulnerable to remote code execution (RCE). This is due to a lack of sanitization on user input strings, allowing a malicious user to inject and execute arbitrary script through symphony/content/content.blueprintsdatasources.php
.
CPE | Name | Operator | Version |
---|---|---|---|
symphonycms/symphony-2 | le | 2.6.11 |