3 matches found
The vulnerability of the implementation of the isTrustedResourceDir method in the Smarty_Security template handler for PHP Smarty allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the isTrustedResourceDir method in the SmartySecurity template handler class for PHP Smarty is related to errors in restricting access to directories with limited permissions. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected...
DEBIAN-CVE-2018-13982
SmartySecurity::isTrustedResourceDir in Smarty before 3.1.33 is prone to a path traversal vulnerability due to insufficient template code sanitization. This allows attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files...
UBUNTU-CVE-2018-13982
SmartySecurity::isTrustedResourceDir in Smarty before 3.1.33 is prone to a path traversal vulnerability due to insufficient template code sanitization. This allows attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files...