8 matches found
EUVD-2022-6844
Malicious code in bioql PyPI...
CVE-2012-4277
Cross-site scripting XSS vulnerability in the smartyfunctionhtmloptionsoptoutput function in distribution/libs/plugins/function.htmloptions.php in Smarty before 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-16831
Smarty before 3.1.33-dev-4 allows attackers to bypass the trusteddir protection mechanism via a file:./../ substring in an include statement...
CVE-2014-8350
Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by "literal" in a template...
DEBIAN-CVE-2010-4727
Smarty before 3.0.0 beta 7 does not properly handle the tags, which has unspecified impact and remote attack vectors...
DEBIAN-CVE-2009-5053
Unspecified vulnerability in Smarty before 3.0.0 beta 6 allows remote attackers to execute arbitrary PHP code by injecting this code into a cache file...
Security fix for the ALT Linux 6 package smarty version 2.6.22-alt1
Jan. 27, 2009 Vladimir V Kamarzin 2.6.22-alt1 - Updated to 2.6.22. Security fixes: + CVE-2008-4810 + CVE-2008-4811...
Security fix for the ALT Linux 6 package smarty version 2.6.19-alt1
March 12, 2008 Vladimir V Kamarzin 2.6.19-alt1 - 2.6.19. Security fixes: + CVE-2008-1066 Smarty "regexreplace" Modifier Template Security Bypass...