Yeti Platform 漏洞列表

共找到 2 个与 Yeti Platform 相关的漏洞

📅 加载漏洞趋势中...

CVE-2024-46507: Yeti Platform < 2.1.12 - Server-Side Template Injection to RCE POC

日期: 2025-08-01 | 影响软件: Yeti Platform

The Yeti Platform < 2.1.12 contains a Server-Side Template Injection (SSTI) vulnerability that can lead to Remote Code Execution (RCE) when exploited by an authenticated user. Attackers with valid credentials can inject malicious template expressions, which the server evaluates, allowing arbitrary command execution.
CVE-2024-46507: Yeti Platform < 2.1.12 - Server-Side Template Injection to RCE POC

日期: 2025-08-01 | 影响软件: Yeti Platform

The Yeti Platform < 2.1.12 contains a Server-Side Template Injection (SSTI) vulnerability that can lead to Remote Code Execution (RCE) when exploited by an authenticated user. Attackers with valid credentials can inject malicious template expressions, which the server evaluates, allowing arbitrary command execution.