CVE-2021-46063: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
(updated )
MCMS v5.2.5 was discovered to contain a Server Side Template Injection (SSTI) vulnerability via the Template Management module.
References
Detect and mitigate CVE-2021-46063 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →