Security Advisory
CVE-2021-42651
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A Server Side Template Injection (SSTI) vulnerability in Pentest-Collaboration-Framework v1.0.8 allows an authenticated remote attacker to execute arbitrary code through /project/PROJECTNAME/reports/.