CVE-2020-7674
CVE-2020-7674
access-policy through 3.1.0 is vulnerable to Arbitrary Code Execution. User input provided to the `template` function is executed by the `eval` function resulting in code execution.
Affected products
n/a · access-policyWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →