CVE-2024-29686
published 2024-03-29CVE-2024-29686: Server-side Template Injection (SSTI) vulnerability in Winter CMS v.1.2.3 allows a remote attacker to execute arbitrary code via a crafted payload to the CMS…
PriorityP345high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
1.82%
76.1th percentile
Server-side Template Injection (SSTI) vulnerability in Winter CMS v.1.2.3 allows a remote attacker to execute arbitrary code via a crafted payload to the CMS Pages field and Plugin components. NOTE: the vendor disputes this because the payload could only be entered by a trusted user, such as the owner of the server that hosts Winter CMS, or a developer working for them.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wintercms | winter | — | — |
| wintercms | winter | 0 – 1.2.3 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Winter CMS Server-Side Template Injection (SSTI) vulnerability
osv·2024-03-29
CVE-2024-29686 [HIGH] Winter CMS Server-Side Template Injection (SSTI) vulnerability
Winter CMS Server-Side Template Injection (SSTI) vulnerability
Server-side Template Injection (SSTI) vulnerability in Winter CMS v.1.2.3 allows a remote attacker to execute arbitrary code via a crafted payload to the CMS Pages field and Plugin components.
GHSA
Winter CMS Server-Side Template Injection (SSTI) vulnerability
ghsa·2024-03-29
CVE-2024-29686 [HIGH] CWE-75 Winter CMS Server-Side Template Injection (SSTI) vulnerability
Winter CMS Server-Side Template Injection (SSTI) vulnerability
Server-side Template Injection (SSTI) vulnerability in Winter CMS v.1.2.3 allows a remote attacker to execute arbitrary code via a crafted payload to the CMS Pages field and Plugin components.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://forum.ksec.co.uk/t/webapps-winter-cms-1-2-3-server-side-template-injection-ssti-authenticated/2779https://wintercms.com/docs/v1.2/docs/cms/themes#template-structurehttps://www.exploit-db.com/exploits/51893https://forum.ksec.co.uk/t/webapps-winter-cms-1-2-3-server-side-template-injection-ssti-authenticated/2779https://wintercms.com/docs/v1.2/docs/cms/themes#template-structurehttps://www.exploit-db.com/exploits/51893
2024-03-29
Published