A Server-Side Template Injection issue was discovered in Crafter CMS 3.0.18. Attackers with developer privileges may execute OS commands by Creating/Editing a template file (.ftl filetype) that…
Link: http://feeds.security-database.com/~r/Last100Alerts/~3/u32IU339V0M/detail.php