Lucene search

K

GoogleOSV:GHSA-HWQ7-5VV9-C6CF

HistorySep 16, 2022 - 12:00 a.m.

Smarty Cross-site Scripting vulnerability in pages that use smarty_function_mailto

2022-09-1600:00:39

Google

osv.dev

13

smarty

cross-site scripting

vulnerability

mailto plugin

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.002

Percentile

54.2%

In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows cross-site scripting. A web page that uses smarty_function_mailto, and that could be parameterized using GET or POST input parameters, could allow injection of JavaScript code by a user.

References

bugs.gentoo.org/870100

github.com/FriendsOfPHP/security-advisories/blob/master/smarty/smarty/CVE-2018-25047.yaml

github.com/smarty-php/smarty

github.com/smarty-php/smarty/commit/55ea25d1f50f0406fb1ccedd212c527977793fc9

github.com/smarty-php/smarty/issues/454

github.com/smarty-php/smarty/releases/tag/v3.1.47

github.com/smarty-php/smarty/releases/tag/v4.2.1

lists.debian.org/debian-lts-announce/2023/01/msg00002.html

nvd.nist.gov/vuln/detail/CVE-2018-25047

security.gentoo.org/glsa/202209-09

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.002

Percentile

54.2%

Related for OSV:GHSA-HWQ7-5VV9-C6CF

ubuntucve1 debiancve1 prion1 openvas2 nessus2 friendsofphp1 cve1 nvd1 debian1 cvelist1 mageia1 veracode1 osv2 github1 gentoo1