Vulnerability CVE-2023-29689


Published: 2023-08-04

Description:
PyroCMS 3.9 contains a remote code execution (RCE) vulnerability that can be exploited through a server-side template injection (SSTI) flaw. This vulnerability allows a malicious attacker to send customized commands to the server and execute arbitrary code on the affected system.

See advisories in our WLB2 database:
Topic
Author
Date
Low
Pyro CMS 3.9 Server-Side Template Injection
Daniel Barros
10.08.2023

 References:
https://cupc4k3.lol/ssti-leads-to-rce-on-pyrocms-7515be27c811

Copyright 2024, cxsecurity.com

 

Back to Top