Package "smarty3"

Name:	smarty3
Description:	Smarty - the compiling PHP template engine
Latest version:	3.1.34+20190228.1.c9f0de05+selfpack1-1ubuntu0.1
Release:	focal (20.04)
Level:	updates
Repository:	universe
Homepage:	http://www.smarty.net/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "smarty3"

All arch deb package

APT INSTALL

Other versions of "smarty3" in Focal

Repository	Area	Version
base	universe	3.1.34+20190228.1.c9f0de05+selfpack1-1
security	universe	3.1.34+20190228.1.c9f0de05+selfpack1-1ubuntu0.1

Changelog

Version: 3.1.34+20190228.1.c9f0de05+selfpack1-1ubuntu0.1 2024-12-13 02:07:04 UTC

smarty3 (3.1.34+20190228.1.c9f0de05+selfpack1-1ubuntu0.1) focal-security; urgency=medium * SECURITY UPDATE: Cross site scripting vulnerability - debian/patches/CVE-2018-25047.patch: Applied appropriate javascript and html escaping in mailto plugin to counter injection attacks. - debian/patches/CVE-2023-28447.patch: Implement fix and tests - debian/patches/CVE-2024-35226.patch: Fixed a code injection vulnerability in extends-tag. - CVE-2018-25047 - CVE-2023-28447 - CVE-2024-35226 -- Paulo Flabiano Smorigo <email address hidden> Mon, 02 Dec 2024 18:12:01 -0300

CVE-2018-25047	In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. A web page that uses smarty_function_mailto, and that coul
CVE-2023-28447	Smarty is a template engine for PHP. In affected versions smarty did not properly escape javascript code. An attacker could exploit this vulnerabilit
CVE-2024-35226	Smarty is a template engine for PHP, facilitating the separation of presentation (HTML/CSS) from application logic. In affected versions template aut

About - Send Feedback to @ubuntu_updates

Package "smarty3"

Links

Download "smarty3"

Other versions of "smarty3" in Focal

Changelog

Share this page

Bookmarks

Latest updates

updates

security

PPA updates