Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-25047

In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. A web page that uses smarty_function_mailto, and that could be parameterized using GET or POST input parameters, could allow injection of JavaScript code by a user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.0%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2018-25047
  • Smarty » Smarty » Version: 1.0
    cpe:2.3:a:smarty:smarty:1.0
  • Smarty » Smarty » Version: 1.0a
    cpe:2.3:a:smarty:smarty:1.0a
  • Smarty » Smarty » Version: 1.0b
    cpe:2.3:a:smarty:smarty:1.0b
  • Smarty » Smarty » Version: 1.1.0
    cpe:2.3:a:smarty:smarty:1.1.0
  • Smarty » Smarty » Version: 1.2.0
    cpe:2.3:a:smarty:smarty:1.2.0
  • Smarty » Smarty » Version: 1.2.1
    cpe:2.3:a:smarty:smarty:1.2.1
  • Smarty » Smarty » Version: 1.2.2
    cpe:2.3:a:smarty:smarty:1.2.2
  • Smarty » Smarty » Version: 1.3.0
    cpe:2.3:a:smarty:smarty:1.3.0
  • Smarty » Smarty » Version: 1.3.1
    cpe:2.3:a:smarty:smarty:1.3.1
  • Smarty » Smarty » Version: 1.3.2
    cpe:2.3:a:smarty:smarty:1.3.2
  • Smarty » Smarty » Version: 1.4.0
    cpe:2.3:a:smarty:smarty:1.4.0
  • Smarty » Smarty » Version: 1.4.1
    cpe:2.3:a:smarty:smarty:1.4.1
  • Smarty » Smarty » Version: 1.4.2
    cpe:2.3:a:smarty:smarty:1.4.2
  • Smarty » Smarty » Version: 1.4.3
    cpe:2.3:a:smarty:smarty:1.4.3
  • Smarty » Smarty » Version: 1.4.4
    cpe:2.3:a:smarty:smarty:1.4.4
  • Smarty » Smarty » Version: 1.4.5
    cpe:2.3:a:smarty:smarty:1.4.5
  • Smarty » Smarty » Version: 1.4.6
    cpe:2.3:a:smarty:smarty:1.4.6
  • Smarty » Smarty » Version: 1.5.0
    cpe:2.3:a:smarty:smarty:1.5.0
  • Smarty » Smarty » Version: 1.5.1
    cpe:2.3:a:smarty:smarty:1.5.1
  • Smarty » Smarty » Version: 1.5.2
    cpe:2.3:a:smarty:smarty:1.5.2
  • Smarty » Smarty » Version: 2.0.0
    cpe:2.3:a:smarty:smarty:2.0.0
  • Smarty » Smarty » Version: 2.0.1
    cpe:2.3:a:smarty:smarty:2.0.1
  • Smarty » Smarty » Version: 2.1.0
    cpe:2.3:a:smarty:smarty:2.1.0
  • Smarty » Smarty » Version: 2.1.1
    cpe:2.3:a:smarty:smarty:2.1.1
  • Smarty » Smarty » Version: 2.2.0
    cpe:2.3:a:smarty:smarty:2.2.0
  • Smarty » Smarty » Version: 2.3.0
    cpe:2.3:a:smarty:smarty:2.3.0
  • Smarty » Smarty » Version: 2.3.1
    cpe:2.3:a:smarty:smarty:2.3.1
  • Smarty » Smarty » Version: 2.4.0
    cpe:2.3:a:smarty:smarty:2.4.0
  • Smarty » Smarty » Version: 2.4.1
    cpe:2.3:a:smarty:smarty:2.4.1
  • Smarty » Smarty » Version: 2.4.2
    cpe:2.3:a:smarty:smarty:2.4.2
  • Smarty » Smarty » Version: 2.5.0
    cpe:2.3:a:smarty:smarty:2.5.0
  • Smarty » Smarty » Version: 2.6.0
    cpe:2.3:a:smarty:smarty:2.6.0
  • Smarty » Smarty » Version: 2.6.1
    cpe:2.3:a:smarty:smarty:2.6.1
  • Smarty » Smarty » Version: 2.6.10
    cpe:2.3:a:smarty:smarty:2.6.10
  • Smarty » Smarty » Version: 2.6.11
    cpe:2.3:a:smarty:smarty:2.6.11
  • Smarty » Smarty » Version: 2.6.12
    cpe:2.3:a:smarty:smarty:2.6.12
  • Smarty » Smarty » Version: 2.6.13
    cpe:2.3:a:smarty:smarty:2.6.13
  • Smarty » Smarty » Version: 2.6.14
    cpe:2.3:a:smarty:smarty:2.6.14
  • Smarty » Smarty » Version: 2.6.15
    cpe:2.3:a:smarty:smarty:2.6.15
  • Smarty » Smarty » Version: 2.6.16
    cpe:2.3:a:smarty:smarty:2.6.16
  • Smarty » Smarty » Version: 2.6.17
    cpe:2.3:a:smarty:smarty:2.6.17
  • Smarty » Smarty » Version: 2.6.18
    cpe:2.3:a:smarty:smarty:2.6.18
  • Smarty » Smarty » Version: 2.6.2
    cpe:2.3:a:smarty:smarty:2.6.2
  • Smarty » Smarty » Version: 2.6.20
    cpe:2.3:a:smarty:smarty:2.6.20
  • Smarty » Smarty » Version: 2.6.22
    cpe:2.3:a:smarty:smarty:2.6.22
  • Smarty » Smarty » Version: 2.6.24
    cpe:2.3:a:smarty:smarty:2.6.24
  • Smarty » Smarty » Version: 2.6.25
    cpe:2.3:a:smarty:smarty:2.6.25
  • Smarty » Smarty » Version: 2.6.26
    cpe:2.3:a:smarty:smarty:2.6.26
  • Smarty » Smarty » Version: 2.6.27
    cpe:2.3:a:smarty:smarty:2.6.27
  • Smarty » Smarty » Version: 2.6.28
    cpe:2.3:a:smarty:smarty:2.6.28
  • Smarty » Smarty » Version: 2.6.29
    cpe:2.3:a:smarty:smarty:2.6.29
  • Smarty » Smarty » Version: 2.6.3
    cpe:2.3:a:smarty:smarty:2.6.3
  • Smarty » Smarty » Version: 2.6.30
    cpe:2.3:a:smarty:smarty:2.6.30
  • Smarty » Smarty » Version: 2.6.31
    cpe:2.3:a:smarty:smarty:2.6.31
  • Smarty » Smarty » Version: 2.6.4
    cpe:2.3:a:smarty:smarty:2.6.4
  • Smarty » Smarty » Version: 2.6.5
    cpe:2.3:a:smarty:smarty:2.6.5
  • Smarty » Smarty » Version: 2.6.6
    cpe:2.3:a:smarty:smarty:2.6.6
  • Smarty » Smarty » Version: 2.6.7
    cpe:2.3:a:smarty:smarty:2.6.7
  • Smarty » Smarty » Version: 2.6.9
    cpe:2.3:a:smarty:smarty:2.6.9
  • Smarty » Smarty » Version: 3.0.0
    cpe:2.3:a:smarty:smarty:3.0.0
  • Smarty » Smarty » Version: 3.0.1
    cpe:2.3:a:smarty:smarty:3.0.1
  • Smarty » Smarty » Version: 3.0.2
    cpe:2.3:a:smarty:smarty:3.0.2
  • Smarty » Smarty » Version: 3.0.3
    cpe:2.3:a:smarty:smarty:3.0.3
  • Smarty » Smarty » Version: 3.0.4
    cpe:2.3:a:smarty:smarty:3.0.4
  • Smarty » Smarty » Version: 3.0.5
    cpe:2.3:a:smarty:smarty:3.0.5
  • Smarty » Smarty » Version: 3.0.6
    cpe:2.3:a:smarty:smarty:3.0.6
  • Smarty » Smarty » Version: 3.0.7
    cpe:2.3:a:smarty:smarty:3.0.7
  • Smarty » Smarty » Version: 3.1
    cpe:2.3:a:smarty:smarty:3.1
  • Smarty » Smarty » Version: 3.1.0
    cpe:2.3:a:smarty:smarty:3.1.0
  • Smarty » Smarty » Version: 3.1.1
    cpe:2.3:a:smarty:smarty:3.1.1
  • Smarty » Smarty » Version: 3.1.10
    cpe:2.3:a:smarty:smarty:3.1.10
  • Smarty » Smarty » Version: 3.1.11
    cpe:2.3:a:smarty:smarty:3.1.11
  • Smarty » Smarty » Version: 3.1.12
    cpe:2.3:a:smarty:smarty:3.1.12
  • Smarty » Smarty » Version: 3.1.13
    cpe:2.3:a:smarty:smarty:3.1.13
  • Smarty » Smarty » Version: 3.1.14
    cpe:2.3:a:smarty:smarty:3.1.14
  • Smarty » Smarty » Version: 3.1.15
    cpe:2.3:a:smarty:smarty:3.1.15
  • Smarty » Smarty » Version: 3.1.16
    cpe:2.3:a:smarty:smarty:3.1.16
  • Smarty » Smarty » Version: 3.1.17
    cpe:2.3:a:smarty:smarty:3.1.17
  • Smarty » Smarty » Version: 3.1.18
    cpe:2.3:a:smarty:smarty:3.1.18
  • Smarty » Smarty » Version: 3.1.19
    cpe:2.3:a:smarty:smarty:3.1.19
  • Smarty » Smarty » Version: 3.1.2
    cpe:2.3:a:smarty:smarty:3.1.2
  • Smarty » Smarty » Version: 3.1.20
    cpe:2.3:a:smarty:smarty:3.1.20
  • Smarty » Smarty » Version: 3.1.21
    cpe:2.3:a:smarty:smarty:3.1.21
  • Smarty » Smarty » Version: 3.1.23
    cpe:2.3:a:smarty:smarty:3.1.23
  • Smarty » Smarty » Version: 3.1.24
    cpe:2.3:a:smarty:smarty:3.1.24
  • Smarty » Smarty » Version: 3.1.25
    cpe:2.3:a:smarty:smarty:3.1.25
  • Smarty » Smarty » Version: 3.1.26
    cpe:2.3:a:smarty:smarty:3.1.26
  • Smarty » Smarty » Version: 3.1.27
    cpe:2.3:a:smarty:smarty:3.1.27
  • Smarty » Smarty » Version: 3.1.28
    cpe:2.3:a:smarty:smarty:3.1.28
  • Smarty » Smarty » Version: 3.1.29
    cpe:2.3:a:smarty:smarty:3.1.29
  • Smarty » Smarty » Version: 3.1.3
    cpe:2.3:a:smarty:smarty:3.1.3
  • Smarty » Smarty » Version: 3.1.30
    cpe:2.3:a:smarty:smarty:3.1.30
  • Smarty » Smarty » Version: 3.1.31
    cpe:2.3:a:smarty:smarty:3.1.31
  • Smarty » Smarty » Version: 3.1.32
    cpe:2.3:a:smarty:smarty:3.1.32
  • Smarty » Smarty » Version: 3.1.33
    cpe:2.3:a:smarty:smarty:3.1.33
  • Smarty » Smarty » Version: 3.1.34
    cpe:2.3:a:smarty:smarty:3.1.34
  • Smarty » Smarty » Version: 3.1.35
    cpe:2.3:a:smarty:smarty:3.1.35
  • Smarty » Smarty » Version: 3.1.36
    cpe:2.3:a:smarty:smarty:3.1.36
  • Smarty » Smarty » Version: 3.1.37
    cpe:2.3:a:smarty:smarty:3.1.37
  • Smarty » Smarty » Version: 3.1.37.1
    cpe:2.3:a:smarty:smarty:3.1.37.1
  • Smarty » Smarty » Version: 3.1.38
    cpe:2.3:a:smarty:smarty:3.1.38
  • Smarty » Smarty » Version: 3.1.39
    cpe:2.3:a:smarty:smarty:3.1.39
  • Smarty » Smarty » Version: 3.1.4
    cpe:2.3:a:smarty:smarty:3.1.4
  • Smarty » Smarty » Version: 3.1.40
    cpe:2.3:a:smarty:smarty:3.1.40
  • Smarty » Smarty » Version: 3.1.41
    cpe:2.3:a:smarty:smarty:3.1.41
  • Smarty » Smarty » Version: 3.1.42
    cpe:2.3:a:smarty:smarty:3.1.42
  • Smarty » Smarty » Version: 3.1.43
    cpe:2.3:a:smarty:smarty:3.1.43
  • Smarty » Smarty » Version: 3.1.44
    cpe:2.3:a:smarty:smarty:3.1.44
  • Smarty » Smarty » Version: 3.1.45
    cpe:2.3:a:smarty:smarty:3.1.45
  • Smarty » Smarty » Version: 3.1.46
    cpe:2.3:a:smarty:smarty:3.1.46
  • Smarty » Smarty » Version: 3.1.5
    cpe:2.3:a:smarty:smarty:3.1.5
  • Smarty » Smarty » Version: 3.1.6
    cpe:2.3:a:smarty:smarty:3.1.6
  • Smarty » Smarty » Version: 3.1.7
    cpe:2.3:a:smarty:smarty:3.1.7
  • Smarty » Smarty » Version: 3.1.8
    cpe:2.3:a:smarty:smarty:3.1.8
  • Smarty » Smarty » Version: 3.1.9
    cpe:2.3:a:smarty:smarty:3.1.9
  • Smarty » Smarty » Version: 4.0.0
    cpe:2.3:a:smarty:smarty:4.0.0
  • Smarty » Smarty » Version: 4.0.1
    cpe:2.3:a:smarty:smarty:4.0.1
  • Smarty » Smarty » Version: 4.0.2
    cpe:2.3:a:smarty:smarty:4.0.2
  • Smarty » Smarty » Version: 4.0.3
    cpe:2.3:a:smarty:smarty:4.0.3
  • Smarty » Smarty » Version: 4.0.4
    cpe:2.3:a:smarty:smarty:4.0.4
  • Smarty » Smarty » Version: 4.1.0
    cpe:2.3:a:smarty:smarty:4.1.0
  • Smarty » Smarty » Version: 4.1.1
    cpe:2.3:a:smarty:smarty:4.1.1
  • Smarty » Smarty » Version: 4.2.0
    cpe:2.3:a:smarty:smarty:4.2.0
  • Debian » Debian Linux » Version: 10.0
    cpe:2.3:o:debian:debian_linux:10.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved