CVE-2024-37301 | adfinis document-merge-service up to 6.5.1 Template special elements used in a template engine (GHSA-v5gf-r78h-55q6)

Posted by Angelo Barbosa | Jun 11, 2024 | CVE

A vulnerability was found in adfinis document-merge-service up to 6.5.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Template Handler. The manipulation leads to improper neutralization of special elements used in a template engine.

This vulnerability is known as CVE-2024-37301. The attack can be launched remotely. There is no exploit available.

CVE-2024-37301 | adfinis document-merge-service up to 6.5.1 Template special elements used in a template engine (GHSA-v5gf-r78h-55q6)

Related Posts

CVE-2024-38256 | Microsoft Windows up to Server 2019 Kernel-Mode Driver uninitialized resource

CVE-2023-51714 | Qt up to 5.15.16/6.2.10/6.5.3/6.6.1 HTTP/2 HAndler hpacktable.cpp integer overflow

CVE-2024-21918 | Rockwell Automation Arena Simulation up to 16.20.02 use after free

CVE-2023-26159 | follow-redirects up to 1.15.3 url.parse hostname input validation (Issue 235)