Smarty Template Security Bypass Arbitrary PHP Code Execution

2005-02-03T12:56:36
ID OSVDB:14070
Type osvdb
Reporter OSVDB
Modified 2005-02-03T12:56:36

Description

Solution Description

Upgrade to version 2.6.7 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://smarty.php.net/ Vendor Specific News/Changelog Entry: http://smarty.php.net/misc/NEWS