Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

GoogleOSV:CVE-2021-26120

HistoryFeb 22, 2021 - 2:15 a.m.

Vulners
/
Osv
/
CVE-2021-26120

CVE-2021-26120

2021-02-2202:15:14

Google

osv.dev

smarty

code injection

vulnerability

software

AI Score

7.1

Confidence

Low

EPSS

0.011

Percentile

84.8%

JSON

Smarty before 3.1.39 allows code injection via an unexpected function name after a {function name= substring.

References

github.com/smarty-php/smarty/blob/master/CHANGELOG.md

lists.debian.org/debian-lts-announce/2021/04/msg00004.html

lists.debian.org/debian-lts-announce/2021/04/msg00014.html

security.gentoo.org/glsa/202105-06

www.debian.org/security/2022/dsa-5151

ubuntucve 1

cvelist 1

veracode 1

prion 1

friendsofphp 1

debiancve 1

cve 1

osv 5

nvd 1

github 1

freebsd 1

mageia 2

gentoo 1

nessus 7

openvas 8

srcincite 2

debian 3

fedora 2

ubuntu 3

ubuntucve

CVE-2021-26120

2021-02-22 00:00:00

cvelist

CVE-2021-26120

2021-02-22 01:38:15

veracode

Remote Code Execution (RCE)

2021-02-22 07:04:00

prion

Code injection

2021-02-22 02:15:00

friendsofphp

Smarty_Internal_Runtime_TplFunction Sandbox Escape PHP Code Injection

2021-01-24 22:44:07

debiancve

CVE-2021-26120

2021-02-22 02:15:14

cve

CVE-2021-26120

2021-02-22 02:15:14

osv

PHP Code Injection by malicious function name in smarty

2021-02-26 19:53:24

smarty3 - security update

2021-04-05 00:00:00

smarty3 vulnerabilities

2022-03-28 10:09:49

nvd

CVE-2021-26120

2021-02-22 02:15:14

github

PHP Code Injection by malicious function name in smarty

2021-02-26 19:53:24

freebsd

Bacula-Web -- Multiple Vulnerabilities

2021-07-11 00:00:00

mageia

Updated php-smarty package fixes security vulnerabilities

2021-07-10 23:00:34

Updated php-smarty packages fix security vulnerability

2022-04-03 01:22:09

gentoo

Smarty: Multiple vulnerabilities

2021-05-26 00:00:00

nessus

FreeBSD : Bacula-Web -- Multiple Vulnerabilities (f05dbd1f-2599-11ec-91be-001b217b3468)

2021-10-06 00:00:00

GLSA-202105-06 : Smarty: Multiple vulnerabilities

2021-05-27 00:00:00

Ubuntu 20.04 ESM : Smarty vulnerabilities (USN-5348-3)

2023-10-20 00:00:00

openvas

Mageia: Security Advisory (MGASA-2021-0335)

2022-01-28 00:00:00

Debian: Security Advisory (DLA-2618-1)

2021-04-06 00:00:00

Fedora: Security Advisory for php-Smarty (FEDORA-2022-52154efd61)

2022-10-24 00:00:00

srcincite

SRC-2021-0010 : Smarty Template Engine Smarty_Internal_Runtime_TplFunction Sandbox Escape Remote Code Execution Vulnerability

2021-01-24 00:00:00

SRC-2021-0009 : Smarty Template Engine template_object Sandbox Escape Remote Code Execution Vulnerability

2021-01-24 00:00:00

debian

[SECURITY] [DLA 2618-2] smarty3 regression update

2021-04-16 07:54:10

[SECURITY] [DLA 2618-1] smarty3 security update

2021-04-05 06:25:41

[SECURITY] [DSA 5151-1] smarty3 security update

2022-05-29 14:57:57

fedora

[SECURITY] Fedora 37 Update: php-Smarty-3.1.47-1.fc37

2022-11-10 22:46:12

[SECURITY] Fedora 36 Update: php-Smarty-3.1.47-1.fc36

2022-10-23 09:04:31

ubuntu

Smarty vulnerabilities

2022-06-21 00:00:00

Smarty vulnerabilities

2022-03-28 00:00:00

Smarty vulnerabilities

2022-03-28 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

AI Score

7.1

Confidence

Low

EPSS

0.011

Percentile

84.8%

JSON

Related for OSV:CVE-2021-26120