Smarty prior to 3.1.39 allows a Sandbox Escape because $smarty.template_object can be accessed in sandbox mode.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
smarty smarty |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
debian debian linux 11.0 |