VYPR
Unrated severityNVD Advisory· Published Apr 26, 2024· Updated Aug 2, 2024

CVE-2024-32404

CVE-2024-32404

Description

Server-Side Template Injection (SSTI) vulnerability in inducer relate before v.2024.1, allows remote attackers to execute arbitrary code via a crafted payload to the Markup Sandbox feature.

Affected products

2
  • inducer relate/inducer relatedescription
  • Inducer/Relatellm-fuzzy
    Range: <2024.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.