Lucene search
K

[SECURITY] [DLA 3956-1] smarty3 security update

🗓️ 17 Nov 2024 11:01:27Reported by DebianType 
debian
 debian
🔗 lists.debian.org👁 22 Views

Multiple vulnerabilities in smarty3 allow XSS and PHP code injection; upgrade advised.

Related
Packages
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of the PHP Smarty templater, related to improper handling of code generation, allows attackers to execute arbitrary PHP code.
27 Mar 202500:00
bdu_fstec
IBM Security Bulletins
Security Bulletin: Vulnerabilities in smarty and axios might affect IBM Storage Defender Sentinel Anomaly Scan Engine.
12 Dec 202513:04
ibm
Circl
CVE-2023-28447
29 Mar 202300:49
circl
CNNVD
Smarty 跨站脚本漏洞
14 Sep 202200:00
cnnvd
CNNVD
Smarty 跨站脚本漏洞
28 Mar 202300:00
cnnvd
CNNVD
Smarty 安全漏洞
28 May 202400:00
cnnvd
CVE
CVE-2018-25047
14 Sep 202200:00
cve
CVE
CVE-2023-28447
28 Mar 202320:07
cve
CVE
CVE-2024-35226
28 May 202420:55
cve
Cvelist
CVE-2018-25047
14 Sep 202200:00
cvelist
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Debian11anysmarty33.1.39-2+deb11u2smarty3_3.1.39-2+deb11u2_any.deb

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Nov 2024 11:01Current
6.8Medium risk
Vulners AI Score6.8
CVSS 3.16.1 - 7.3
EPSS0.01025
SSVC
22