CVE-2021-29454Injection in Smarty

CWE-74Injection9 documents4 sources
Severity
8.1HIGHCNA
OSV7.5
No vector
EPSS
0.6%
top 29.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Smarty-php SmartySmarty
Timeline
PublishedJan 10
Latest updateJun 21

Description

Sandbox Escape by math function in smarty Smarty is a template engine for PHP, facilitating the separation of presentation (HTML/CSS) from application logic. Prior to versions 3.1.42 and 4.0.2, template authors could run arbitrary PHP code by crafting a malicious math string. If a math string was passed through as user provided data to the math function, external users could run arbitrary PHP code by crafting a malicious math string. Users should upgrade to version 3.1.42 or 4.0.2 to receive a

Affected Packages2 packages

Packagistsmarty/smarty4.0.04.0.2+1
CVEListV5smarty-php/smarty< 3.1.42+1

🔴Vulnerability Details

6
OSV
smarty3 vulnerabilities2022-06-21
OSV
smarty3 vulnerabilities2022-03-28
OSV
smarty3 vulnerabilities2022-03-28
OSV
Sandbox Escape by math function in smarty2022-01-12
GHSA
Sandbox Escape by math function in smarty2022-01-12

📋Vendor Advisories

3
Ubuntu
Smarty vulnerabilities2022-06-21
Ubuntu
Smarty vulnerabilities2022-03-28
Ubuntu
Smarty vulnerabilities2022-03-28