CVE-2023-22621: SSTI to RCE by Exploiting Email Templates affecting Strapi Versions <=4.5.5
CVE-2023-22621-POC CVE-2023-22621: SSTI to RCE by Exploiting Email Templates affecting Strapi Versions <=455 The function sendTemplatedEmail renders email templates into HTML content using the lodash template engine that evaluates JavaScript code within templates ref: twittercom/rootxharsh/status/1268181937127997446?lang=en 'use strict'; const _ =