Submeter #766459: 1024-lab SmartAdmin ≤3.29 Server-Side Template Injectioninformação

Título1024-lab SmartAdmin ≤3.29 Server-Side Template Injection
DescriçãoSmart Admin V3 is vulnerable to Server-Side Template Injection (SSTI) in its email template rendering functionality. The application uses the Apache FreeMarker template engine to render email templates stored in the database. An attacker with the ability to modify the `t_mail_template` table’s `template_content` field can inject arbitrary FreeMarker expressions that will be executed on the server when the email is sent. This vulnerability allows remote code execution (RCE) with the privileges of the application server, leading to complete system compromise.
Fonte⚠️ https://www.notion.so/SmartAdmin-Server-Side-Template-Injection-SSTI-in-Email-Template-Rendering-310ea92a3c418087ac63ec8e5a061b62
Utilizador
 din4 (UID 50867)
Submissão24/02/2026 14h52 (há 1 mês)
Moderação07/03/2026 18h42 (11 days later)
EstadoAceite
Entrada VulDB349703 [1024-lab/lab1024 SmartAdmin até 3.29 FreeMarker Template MailService.java freemarkerResolverContent template_content Elevação de Privilégios]
Pontos17

VoltarVisão GeralPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!