1 results (0.001 seconds)
CVSS: 9.0EPSS: 1%CPEs: 1EXPL: 0
CVSS: 9.0EPSS: 1%CPEs: 1EXPL: 0CVE-2020-12873
https://notcve.org/view.php?id=CVE-2020-12873
19 Feb 2021 — An issue was discovered in Alfresco Enterprise Content Management (ECM) before 6.2.1. A user with privileges to edit a FreeMarker template (e.g., a webscript) may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running Alfresco. Se detectó un problema en Alfresco Enterprise Content Management (ECM) versiones anteriores a 6.2.1. Un usuario con privilegios para editar una plantilla FreeMarker (por ejemplo, un webscript) puede ejecutar código Java arbit... • https://issues.alfresco.com/jira/browse/MNT-21510 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •