Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-16831

Smarty before 3.1.33-dev-4 allows attackers to bypass the trusted_dir protection mechanism via a file:./../ substring in an include statement.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.1%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 7.1
Products affected by CVE-2018-16831
  • Smarty » Smarty » Version: 3.0.0
    cpe:2.3:a:smarty:smarty:3.0.0
  • Smarty » Smarty » Version: 3.0.1
    cpe:2.3:a:smarty:smarty:3.0.1
  • Smarty » Smarty » Version: 3.0.2
    cpe:2.3:a:smarty:smarty:3.0.2
  • Smarty » Smarty » Version: 3.0.3
    cpe:2.3:a:smarty:smarty:3.0.3
  • Smarty » Smarty » Version: 3.0.4
    cpe:2.3:a:smarty:smarty:3.0.4
  • Smarty » Smarty » Version: 3.0.5
    cpe:2.3:a:smarty:smarty:3.0.5
  • Smarty » Smarty » Version: 3.0.6
    cpe:2.3:a:smarty:smarty:3.0.6
  • Smarty » Smarty » Version: 3.0.7
    cpe:2.3:a:smarty:smarty:3.0.7
  • Smarty » Smarty » Version: 3.1
    cpe:2.3:a:smarty:smarty:3.1
  • Smarty » Smarty » Version: 3.1.0
    cpe:2.3:a:smarty:smarty:3.1.0
  • Smarty » Smarty » Version: 3.1.1
    cpe:2.3:a:smarty:smarty:3.1.1
  • Smarty » Smarty » Version: 3.1.10
    cpe:2.3:a:smarty:smarty:3.1.10
  • Smarty » Smarty » Version: 3.1.11
    cpe:2.3:a:smarty:smarty:3.1.11
  • Smarty » Smarty » Version: 3.1.12
    cpe:2.3:a:smarty:smarty:3.1.12
  • Smarty » Smarty » Version: 3.1.13
    cpe:2.3:a:smarty:smarty:3.1.13
  • Smarty » Smarty » Version: 3.1.14
    cpe:2.3:a:smarty:smarty:3.1.14
  • Smarty » Smarty » Version: 3.1.15
    cpe:2.3:a:smarty:smarty:3.1.15
  • Smarty » Smarty » Version: 3.1.16
    cpe:2.3:a:smarty:smarty:3.1.16
  • Smarty » Smarty » Version: 3.1.17
    cpe:2.3:a:smarty:smarty:3.1.17
  • Smarty » Smarty » Version: 3.1.18
    cpe:2.3:a:smarty:smarty:3.1.18
  • Smarty » Smarty » Version: 3.1.19
    cpe:2.3:a:smarty:smarty:3.1.19
  • Smarty » Smarty » Version: 3.1.2
    cpe:2.3:a:smarty:smarty:3.1.2
  • Smarty » Smarty » Version: 3.1.20
    cpe:2.3:a:smarty:smarty:3.1.20
  • Smarty » Smarty » Version: 3.1.21
    cpe:2.3:a:smarty:smarty:3.1.21
  • Smarty » Smarty » Version: 3.1.23
    cpe:2.3:a:smarty:smarty:3.1.23
  • Smarty » Smarty » Version: 3.1.24
    cpe:2.3:a:smarty:smarty:3.1.24
  • Smarty » Smarty » Version: 3.1.25
    cpe:2.3:a:smarty:smarty:3.1.25
  • Smarty » Smarty » Version: 3.1.26
    cpe:2.3:a:smarty:smarty:3.1.26
  • Smarty » Smarty » Version: 3.1.27
    cpe:2.3:a:smarty:smarty:3.1.27
  • Smarty » Smarty » Version: 3.1.28
    cpe:2.3:a:smarty:smarty:3.1.28
  • Smarty » Smarty » Version: 3.1.29
    cpe:2.3:a:smarty:smarty:3.1.29
  • Smarty » Smarty » Version: 3.1.3
    cpe:2.3:a:smarty:smarty:3.1.3
  • Smarty » Smarty » Version: 3.1.30
    cpe:2.3:a:smarty:smarty:3.1.30
  • Smarty » Smarty » Version: 3.1.31
    cpe:2.3:a:smarty:smarty:3.1.31
  • Smarty » Smarty » Version: 3.1.32
    cpe:2.3:a:smarty:smarty:3.1.32
  • Smarty » Smarty » Version: 3.1.4
    cpe:2.3:a:smarty:smarty:3.1.4
  • Smarty » Smarty » Version: 3.1.5
    cpe:2.3:a:smarty:smarty:3.1.5
  • Smarty » Smarty » Version: 3.1.6
    cpe:2.3:a:smarty:smarty:3.1.6
  • Smarty » Smarty » Version: 3.1.7
    cpe:2.3:a:smarty:smarty:3.1.7
  • Smarty » Smarty » Version: 3.1.8
    cpe:2.3:a:smarty:smarty:3.1.8
  • Smarty » Smarty » Version: 3.1.9
    cpe:2.3:a:smarty:smarty:3.1.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved