PT-2018-18426 · Mautic · Mautic

Joanbono

Publicado

2018-04-18

Atualizado

2021-01-19

CVE-2018-8092

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Mautic versions prior to 2.13.0

Description: The issue allows for CSV injection with exported contact lists. This can be exploited when a user exports contact lists.

Recommendations: For versions prior to 2.13.0, update to 2.13.0 or later.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2018-8092

GHSA-29V9-2FPX-J5G9

Mautic