CVE-2018-13982

CVE-2018-13982

Smarty_Security::isTrustedResourceDir() in Smarty before 3.1.33 is prone to a path traversal vulnerability due to insufficient template code sanitization. This allows attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files.

Source: CVE-2018-13982

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다