CVE-2018-16831
CVE-2018-16831 concerns the Smarty PHP templating engine. The vulnerability arises in Smarty before 3.1.33-dev-4, where an attacker can bypass the trusted_dir protection mechanism by injecting a file:./../ substring into an include statement, enabling potential unintended access to files. The iss...