Link | Resource |
---|---|
https://lab.mediaservice.net/advisory/2020-03-fusionauth.txt | Third Party Advisory |
http://packetstormsecurity.com/files/156102/FusionAuth-1.10-Remote-Command-Execution.html | Third Party Advisory VDB Entry |
https://fusionauth.io/docs/v1/tech/release-notes | Exploit Release Notes |
https://seclists.org/bugtraq/2020/Jan/39 | Mailing List Third Party Advisory |
Configuration 1
|
Published : 2020-01-28 01:15
Updated : 2021-07-21 11:39
NVD link : CVE-2020-7799
Mitre link : CVE-2020-7799
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')