cbcvebase.
CVE-2018-25047
published 2022-09-15

CVE-2018-25047: In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. A web page that uses smarty_function_mailto, and that could be…

PriorityP424medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
0.83%
52.8th percentile
In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. A web page that uses smarty_function_mailto, and that could be parameterized using GET or POST input parameters, could allow injection of JavaScript code by a user.

Affected

7 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debiansmarty3< smarty3 3.1.47-1 (bookworm)smarty3 3.1.47-1 (bookworm)
debiansmarty4< smarty3 3.1.47-1 (bookworm)smarty3 3.1.47-1 (bookworm)
smartysmarty< 3.1.473.1.47
smartysmarty>= 0 < 3.1.473.1.47
smartysmarty>= 4.0.0 < 4.2.14.2.1
smartysmarty>= 4.0.0 < 4.2.14.2.1

CVSS provenance

nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
osv5.4MEDIUM
vendor_debian5.4MEDIUM
vendor_ubuntu5.4MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.