Untriaged
Improper Control of Dynamically-Managed Code Resources in Crafter Studio
Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of CrafterCMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass. By inserting malicious Groovy elements, an attacker may bypass Sandbox restrictions and obtain RCE (Remote Code Execution). This issue affects CrafterCMS: from 4.0.0 through 4.2.2.
References
Affected products
Studio
- <4.3.0
Matching in nixpkgs
pkgs.rstudio
Set of integrated tools for the R language
-
nixos-unstable -
- nixpkgs-unstable 2025.05.1+513
pkgs.rstudio-server
Set of integrated tools for the R language
-
nixos-unstable -
- nixpkgs-unstable 2025.05.1+513
pkgs.rstudioWrapper
None
-
nixos-unstable -
- nixpkgs-unstable 2025.05.1+513-wrapper
pkgs.rstudioServerWrapper
None
-
nixos-unstable -
- nixpkgs-unstable 2025.05.1+513-wrapper
pkgs.vscode-extensions.visualstudiotoolsforunity.vstuc
Integrates Visual Studio Code for Unity
-
nixos-unstable -
- nixpkgs-unstable 1.1.3
pkgs.vscode-extensions.visualstudioexptteam.vscodeintellicode
AI-assisted development
-
nixos-unstable -
- nixpkgs-unstable 1.3.2
pkgs.vscode-extensions.visualstudioexptteam.intellicode-api-usage-examples
See relevant code examples from GitHub for over 100K different APIs right in your editor
-
nixos-unstable -
- nixpkgs-unstable 0.2.9
Package maintainers
-
@cfhammill Chris Hammill <cfhammill@gmail.com>
-
@ciil Simon Lackerbauer <simon@lackerbauer.com>
-
@TomaSajt TomaSajt
-
@TheMaxMur Maxim Muravev <muravjev.mak@yandex.ru>
-
@mibmo mib <mib@kanp.ai>