← Back to CVE List
CVE-2017-1000480
Published:
2018-01-03T18:29Z
Last Modified:
2024-11-21T03:04Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
Smarty 3 before 3.1.32 is vulnerable to a PHP code injection when calling fetch() or display() functions on custom resources that does not sanitize template name. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt