In the SEOmatic plugin up to 3.4.11 for Craft CMS 3, it is possible for unauthenticated malicious users to perform a Server-Side Template Injection, allowing for remote code execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nystudio107 seomatic |