Vulnerabilities > Magnolia CMS > Magnolia CMS > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-11 | CVE-2021-46362 | Code Injection vulnerability in Magnolia-Cms Magnolia CMS A Server-Side Template Injection (SSTI) vulnerability in the Registration and Forgotten Password forms of Magnolia v6.2.3 and below allows attackers to execute arbitrary code via a crafted payload entered into the fullname parameter. | 9.8 |
| 2022-02-11 | CVE-2021-46361 | Unspecified vulnerability in Magnolia-Cms Magnolia CMS An issue in the Freemark Filter of Magnolia CMS v6.2.11 and below allows attackers to bypass security restrictions and execute arbitrary code via a crafted FreeMarker payload. | 9.8 |