pkg:Debian/smarty3

所有已知漏洞

• CRITICAL9.8CVE-2017-1000480smarty3 - security update
  from 0, < 3.1.31+20161214.1.c7d42e4+selfpack1-3
• CRITICAL9.8CVE-2017-1000480smarty3 - security update
  from 0, < 3.1.10-2+deb7u2
• CRITICAL9.8CVE-2017-1000480smarty3 - security update
  from 0, < 3.1.21-1+deb8u1
• CRITICAL9.8CVE-2011-1028Smarty3 Arbitrary PHP Code Execution
  from 0, < 3.0.8-1
• CRITICAL9.8CVE-2021-26120PHP Code Injection by malicious function name in smarty
  from 0, < 3.1.39-1
• HIGH8.8CVE-2022-29221smarty3 - security update
  from 0, < 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u6
• HIGH8.8CVE-2022-29221smarty3 - security update
  from 0, < 3.1.39-2+deb11u1
• HIGH8.8CVE-2021-21408Access to restricted PHP code by dynamic static class access in smarty
  from 0, < 3.1.33+20180830.1.3a78a21f+selfpack1-1+deb10u1
• HIGH8.8CVE-2021-21408Access to restricted PHP code by dynamic static class access in smarty
  from 0, < 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u5
• HIGH8.8CVE-2021-21408Access to restricted PHP code by dynamic static class access in smarty
  from 0, < 3.1.39-2+deb11u1
• HIGH8.1CVE-2021-29454Sandbox Escape by math function in smarty
  from 0, < 3.1.39-2+deb11u1
• HIGH7.5CVE-2018-13982smarty3 - security update
  from 0, < 3.1.33+20180830.1.3a78a21f+selfpack1-1
• HIGH7.5CVE-2018-13982smarty3 - security update
  from 0, < 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u2
• HIGH7.5CVE-2021-26119Sandbox escape through template_object in smarty
  from 0, < 3.1.39-1
• HIGH7.3CVE-2024-35226smarty4 - security update
  from 0, < 3.1.39-2+deb11u2
• HIGH7.1CVE-2023-28447smarty3 - security update
  from 0, < 3.1.47-2+deb12u1
• HIGH7.1CVE-2023-28447smarty3 - security update
  from 0, < 3.1.39-2+deb11u2
• MEDIUM5.9CVE-2018-16831Smarty Path Traversal Vulnerability
  from 0, < 3.1.33+20180830.1.3a78a21f+selfpack1-1
• MEDIUM5.4CVE-2018-25047smarty3 - security update
  from 0, < 3.1.39-2+deb11u2
• MEDIUM5.4CVE-2018-25047smarty3 - security update
  from 0, < 3.1.33+20180830.1.3a78a21f+selfpack1-1+deb10u2
• MEDIUM5.4CVE-2018-25047smarty3 - security update
  from 0, < 3.1.39-2+deb11u2
• —CVE-2012-4437Cross-site Scripting in SmartyException
  from 0, < 3.1.10-2
• —CVE-2014-8350smarty3 - security update
  from 0, < 3.1.21-1
• —CVE-2014-8350smarty3 - security update
  from 0, < 3.1.10-2+deb7u1
• —CVE-2009-5054Smarty Does Not Consider Umask Values When Setting Permissions
  from 0, < 3.0~rc1-1
• —CVE-2012-4277Cross-site scripting (XSS) vulnerability in the smarty_function_html_options_optoutput function in distribution/libs/plugins/function.html_…
  from 0, < 3.1.10-1
• —CVE-2010-4727Smarty before 3.0.0 beta 7 does not properly handle the <?php and ?> tags, which has unspecified impact and remote attack vectors.
  from 0, < 3.0~rc1-1
• —CVE-2010-4726Unspecified vulnerability in the math plugin in Smarty before 3.0.0 RC1 has unknown impact and remote attack vectors.
  from 0, < 3.0.8-1
• —CVE-2010-4725Smarty before 3.0.0 RC3 does not properly handle an on value of the asp_tags option in the php.ini file, which has unspecified impact and r…
  from 0, < 3.0.8-1
• —CVE-2010-4724Multiple unspecified vulnerabilities in the parser implementation in Smarty before 3.0.0 RC3 have unknown impact and remote attack vectors.
  from 0, < 3.0.8-1
• —CVE-2010-4723Smarty before 3.0.0, when security is enabled, does not prevent access to the (1) dynamic and (2) private object members of an assigned obj…
  from 0, < 3.0.8-1
• —CVE-2010-4722Unspecified vulnerability in the fetch plugin in Smarty before 3.0.2 has unknown impact and remote attack vectors.
  from 0, < 3.0.8-1
• —CVE-2009-5053Unspecified vulnerability in Smarty before 3.0.0 beta 6 allows remote attackers to execute arbitrary PHP code by injecting this code into a…
  from 0, < 3.0~rc1-1
• —CVE-2009-5052Multiple unspecified vulnerabilities in Smarty before 3.0.0 beta 6 have unknown impact and attack vectors.
  from 0, < 3.0~rc1-1