CVE-2018-14716

Published: Aug 6, 2018Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A Server Side Template Injection (SSTI) was discovered in the SEOmatic plugin before 3.1.4 for Craft CMS, because requests that don't match any elements incorrectly generate the canonicalUrl, and can lead to execution of Twig code.

Affected (1)

Products: Nystudio107: Seomatic

Nystudio107

1 product

Seomatic

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Nystudio107 Seomatic	Before 3.1.4

Related CWEs

CWE-94

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (12)

http://ha.cker.info/exploitation-of-server-side-template-injection-with-craft-cms-plguin-seomatic/

Source: cve@mitre.org

Third Party Advisory

https://github.com/nystudio107/craft-seomatic/commit/1e7d1d084ac3a89e7ec70620f2749110508d1ce1

Source: cve@mitre.org

Vendor Advisory

https://github.com/nystudio107/craft-seomatic/releases/tag/3.1.4

Source: cve@mitre.org

PatchVendor Advisory

https://twitter.com/nystudio107/status/1021847835418009605

Source: cve@mitre.org

Vendor Advisory

https://twitter.com/nystudio107/status/1021855169515057152

Source: cve@mitre.org

Vendor Advisory

https://www.exploit-db.com/exploits/45108/

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://ha.cker.info/exploitation-of-server-side-template-injection-with-craft-cms-plguin-seomatic/