Minetest prior to 5.4.0 allows malicious users to add or modify arbitrary meta fields of the same item stack as saved user input, aka ItemStack meta injection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
minetest minetest |
||
debian debian linux 10.0 |
||
debian debian linux 11.0 |