QwikSec

Security Database

CVE

CWE

Training

CVE-2021-29454

Published: Jan 10, 2022

Modified: Apr 23, 2025

PUBLISHED

CVSS v3.1

8.1

HIGH

Description

Smarty is a template engine for PHP, facilitating the separation of presentation (HTML/CSS) from application logic. Prior to versions 3.1.42 and 4.0.2, template authors could run arbitrary PHP code by crafting a malicious math string. If a math string was passed through as user provided data to the math function, external users could run arbitrary PHP code by crafting a malicious math string. Users should upgrade to version 3.1.42 or 4.0.2 to receive a patch.

Vendor	Product	Versions
smarty-php	smarty	affected `< 3.1.42` affected `>= 4.0.0, < 4.0.2`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

References

https://github.com/smarty-php/smarty/security/advisories/GHSA-29gp-2c3m-3j6m

https://github.com/smarty-php/smarty/commit/215d81a9fa3cd63d82fb3ab56ecaf97cf1e7db71

https://github.com/smarty-php/smarty/releases/tag/v3.1.42

https://github.com/smarty-php/smarty/releases/tag/v4.0.2

https://packagist.org/packages/smarty/smarty

https://www.smarty.net/docs/en/language.function.math.tpl

[debian-lts-announce] 20220505 [SECURITY] [DLA 2995-1] smarty3 security update

mailing-list

vendor-advisory

vendor-advisory

FEDORA-2022-52154efd61

vendor-advisory

FEDORA-2022-d5fc9dcdd7

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.