CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Entando: >> Admin Console >> 4.3.1 Security Vulnerabilities

CVE-2021-35450

A Server Side Template Injection in the Entando Admin Console 6.3.9 and before allows a user with privileges to execute FreeMarker template with command execution via freemarker.template.utility.Execute

CVSS Score

7.2

EPSS Score

0.008

Published

2021-08-02

Page 1

Vulnerabilities

Vulnerable Software

Entando: >> Admin Console >> 4.3.1 Security Vulnerabilities

Products

Pricing

Contact Us