Vulnerabilities (CVE)

Filtered by vendor Access-policy Project Subscribe
Filtered by product Access-policy
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7674 1 Access-policy Project 1 Access-policy 2024-11-21 7.5 HIGH 9.8 CRITICAL
access-policy through 3.1.0 is vulnerable to Arbitrary Code Execution. User input provided to the `template` function is executed by the `eval` function resulting in code execution.