CVE-2020-12790 — Injection in Seomatic

CWE-74 — Injection CWE-1336 — Improper Neutralization of Special Elements Used in a Template Engine4 documents4 sources

Severity

7.5HIGHNVD

EPSS

0.5%

top 35.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nystudio107 Seomatic Nystudio107 Craft-seomatic

Timeline

PublishedMay 11

Latest updateMay 24

Description

In the SEOmatic plugin before 3.2.49 for Craft CMS, helpers/DynamicMeta.php does not properly sanitize the URL. This leads to Server-Side Template Injection and credentials disclosure via a crafted Twig template after a semicolon.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶Packagistnystudio107/craft-seomatic< 3.2.49

▶NVDnystudio107/seomatic< 3.2.49

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

SEOmatic for CraftCMS allows Server-Side Template Injection↗2022-05-24

▶

OSV

SEOmatic for CraftCMS allows Server-Side Template Injection↗2022-05-24

▶

📐Framework References

CWE

Improper Neutralization of Special Elements Used in a Template Engine↗

▶