CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Access-Policy Project: Security Vulnerabilities

CVE-2020-7674

access-policy through 3.1.0 is vulnerable to Arbitrary Code Execution. User input provided to the `template` function is executed by the `eval` function resulting in code execution.

CVSS Score

9.8

EPSS Score

0.012

Published

2020-06-10

Page 1

Vulnerabilities

Vulnerable Software

Access-Policy Project: Security Vulnerabilities

Products

Pricing

Contact Us