Unverified 3rd Party Package Exploit: Remote Code Execution in Template Toolkit
CVE-2022-39051 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package
Learn more about our Web Application Penetration Testing UK.