Vulnerabilities > Smarty

DATE CVE VULNERABILITY TITLE RISK
2021-02-22 CVE-2021-26120 Code Injection vulnerability in Smarty
Smarty before 3.1.39 allows code injection via an unexpected function name after a {function name= substring.
network
low complexity
smarty CWE-94
7.5
2021-02-22 CVE-2021-26119 Unspecified vulnerability in Smarty
Smarty before 3.1.39 allows a Sandbox Escape because $smarty.template_object can be accessed in sandbox mode.
network
low complexity
smarty
5.0
2019-11-20 CVE-2011-1028 Improper Input Validation vulnerability in multiple products
The $smarty.template variable in Smarty3 allows attackers to possibly execute arbitrary PHP code via the sysplugins/smarty_internal_compile_private_special_variable.php file.
network
low complexity
smarty debian CWE-20
7.5
2018-09-18 CVE-2018-13982 Path Traversal vulnerability in Smarty
Smarty_Security::isTrustedResourceDir() in Smarty before 3.1.33 is prone to a path traversal vulnerability due to insufficient template code sanitization.
network
low complexity
smarty CWE-22
5.0
2018-09-11 CVE-2018-16831 Path Traversal vulnerability in Smarty
Smarty before 3.1.33-dev-4 allows attackers to bypass the trusted_dir protection mechanism via a file:./../ substring in an include statement.
network
smarty CWE-22
7.1
2018-01-03 CVE-2017-1000480 Code Injection vulnerability in Smarty
Smarty 3 before 3.1.32 is vulnerable to a PHP code injection when calling fetch() or display() functions on custom resources that does not sanitize template name.
network
low complexity
smarty CWE-94
7.5
2014-11-03 CVE-2014-8350 Code Injection vulnerability in Smarty
Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by "{literal}<{/literal}script language=php>" in a template.
network
low complexity
smarty CWE-94
7.5
2012-10-01 CVE-2012-4437 Cross-Site Scripting vulnerability in Smarty
Cross-site scripting (XSS) vulnerability in the SmartyException class in Smarty (aka smarty-php) before 3.1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that trigger a Smarty exception.
network
smarty CWE-79
4.3
2012-08-13 CVE-2012-4277 Cross-Site Scripting vulnerability in Smarty
Cross-site scripting (XSS) vulnerability in the smarty_function_html_options_optoutput function in distribution/libs/plugins/function.html_options.php in Smarty before 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
smarty CWE-79
4.3
2011-02-03 CVE-2010-4727 Improper Input Validation vulnerability in Smarty
Smarty before 3.0.0 beta 7 does not properly handle the <?php and ?> tags, which has unspecified impact and remote attack vectors.
network
low complexity
smarty CWE-20
critical
10.0