Security Advisory

CVE-2018-16831

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-09-11 13:00:00
Last updated 2024-08-05 10:32:54
Assigner mitre
State PUBLISHED

Description

Smarty before 3.1.33-dev-4 allows attackers to bypass the trusted_dir protection mechanism via a file:./../ substring in an include statement.

← Browse all CVEs View on cve.org ↗