Unverified 3rd Party Package Exploit: Remote Code Execution in Template Toolkit

Unverified 3rd Party Package Exploit: Remote Code Execution in Template Toolkit

CVE-2022-39051 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package

Learn more about our Web Application Penetration Testing UK.