RSS   Vulnerabilities for 'Fenom'   RSS

2022-03-28
 
CVE-2021-46433

NVD-CWE-noinfo
 

 
In fenom 2.12.1 and before, there is a way in fenom/src/Fenom/Template.php function getTemplateCode()to bypass sandbox to execute arbitrary PHP code when disable_native_funcs is true.

 


Copyright 2024, cxsecurity.com

 

Back to Top