Arbitrary Command Execution via FusionAuth Email Templates and Themes

Arbitrary Command Execution via FusionAuth Email Templates and Themes

CVE-2020-7799 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in FusionAuth before 1.11.0. An authenticated user, allowed to edit e-mail templates (Home -> Settings -> Email Templates) or themes (Home -> Settings -> Themes), can execute commands on the underlying operating system by abusing freemarker.template.utility.Execute in the Apache FreeMarker engine that processes custom templates.

Learn more about our Cis Benchmark Audit For Apache Http Server.