CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco
CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco An issue was discovered in Hyland Alfresco Community Edition <=720 By inserting malicious content in the foldergethtmlftl file, an attacker may perform SSTI (Server-Side Template Injection) attacks, which can leverage FreeMarker exposed objects to bypass restrictions and achieve RCE (Remote Code