https://blog.munz4u.de/tags/ssti/ Recent content in Ssti on Marc-Oliver Munz Hugo en-us <a href="https://creativecommons.org/licenses/by-nc/4.0/" target="_blank" rel="noopener">CC BY-NC 4.0</a> Wed, 15 Nov 2023 14:12:02 +0100 https://blog.munz4u.de/posts/2023/11/cve-2024-24230-rce-via-ssti-in-komm.one-cms-10.4.2.14/ Wed, 15 Nov 2023 14:12:02 +0100 https://blog.munz4u.de/posts/2023/11/cve-2024-24230-rce-via-ssti-in-komm.one-cms-10.4.2.14/ <style> table { width: 100%; border-collapse: collapse; margin-bottom: 20px; /* Optional: Add some spacing between the table and other elements */ } th, td { padding: 10px; border: 1px solid #ddd; text-align: left; } @media screen and (max-width: 600px) { th, td { display: block; width: 100%; box-sizing: border-box; } } </style> <h2 id="tldr">TL;DR</h2> <p>I uncovered a critical Remote Code Execution vulnerability in Komm.One&rsquo;s Content Management System version <code>10.4.2.14</code>. Initially, I identified a Server-Side Template Injection (SSTI) flaw in the Velocity template engine, leading to the execution of arbitrary code and affecting several hundred sites. It is noteworthy that all vulnerable instances have now been fixed.</p>