Vulnerabilities > Nystudio107 > Seomatic > 3.1.35
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-12 | CVE-2021-41749 | Code Injection vulnerability in Nystudio107 Seomatic In the SEOmatic plugin up to 3.4.11 for Craft CMS 3, it is possible for unauthenticated attackers to perform a Server-Side Template Injection, allowing for remote code execution. | 7.5 |
| 2020-05-11 | CVE-2020-12790 | Injection vulnerability in Nystudio107 Seomatic In the SEOmatic plugin before 3.2.49 for Craft CMS, helpers/DynamicMeta.php does not properly sanitize the URL. | 5.0 |