Bolt CMS <= 4.2 is vulnerable to Remote Code Execution. Unsafe theme rendering allows an authenticated attacker to edit theme to inject server-side template injection that leads to remote code execution.
Metrics
Affected Vendors & Products
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published: 2022-04-11T16:45:54.000Z
Updated: 2026-07-04T23:45:18.598Z
Reserved: 2021-08-30T00:00:00.000Z
Link: CVE-2021-40219
No data.
Status : Modified
Published: 2022-04-11T17:15:08.027
Modified: 2026-06-17T04:06:39.833
Link: CVE-2021-40219
No data.