CVE-2011-1028
CRITICAL9.8EPSS 0.52%Smarty3 Arbitrary PHP Code Execution
Published: 4/22/2022Modified: 4/28/2026
Description
The $smarty.template variable in Smarty3 allows attackers to possibly execute arbitrary PHP code via the sysplugins/smarty_internal_compile_private_special_variable.php file.
Affected packages (2)
- Debian/smarty3from 0, < 3.0.8-1
- Packagist/smarty/smartyfrom 0, < 3.0.7
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
References (7)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2011-1028
- PATCHhttps://github.com/smarty-php/smarty
- WEBhttps://github.com/smarty-php/smarty/commit/0154f17de2b2dd16ff9c016923015ac19af9c0cb
- WEBhttps://seclists.org/oss-sec/2011/q1/313
- WEBhttps://security-tracker.debian.org/tracker/CVE-2011-1028
- WEBhttps://web.archive.org/web/20110609032516/http://smarty-php.googlecode.com/svn/trunk/distribution/change_log.txt
- WEBhttps://www.smarty.net/forums/viewtopic.php?t=18815