CVE-2023-33570: Code Injection
First published: Wed Jun 28 2023(Updated: )
Bagisto v1.5.1 is vulnerable to Server-Side Template Injection (SSTI).
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Webkul Bagisto | =1.5.1 | |
| =1.5.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2023-33570.
What is the severity level of CVE-2023-33570?
The severity level of CVE-2023-33570 is high (8.8).
What is the affected software version of CVE-2023-33570?
The affected software version of CVE-2023-33570 is Bagisto v1.5.1.
What type of vulnerability is CVE-2023-33570?
CVE-2023-33570 is a Server-Side Template Injection (SSTI) vulnerability.
Is there a fix or patch available for CVE-2023-33570?
It is recommended to update to a patched version of Bagisto to fix CVE-2023-33570.
- collector/nvd-index
- agent/type
- agent/references
- agent/severity
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/softwarecombine
- agent/event
- agent/tags
- vendor/webkul
- canonical/webkul bagisto
- version/webkul bagisto/1.5.1