CVE-2024-46507 | THREATINT

Description

A SSTI (server side template injection) vulnerability in the custom template export function in yeti-platform yeti before 2.1.12 allows attackers to execute code on the application server.

PUBLISHED Reserved 2024-09-11 | Published 2026-05-08 | Updated 2026-05-08 | Assigner mitre

References

rhinosecuritylabs.com/...erver-side-template-injection-ssti/

cve.org (CVE-2024-46507)

nvd.nist.gov (CVE-2024-46507)

Download JSON