#VU50870 Code Injection in Smarty - CVE-2021-26120
Published: February 23, 2021
Vulnerability identifier: #VU50870
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Green
CVE-ID: CVE-2021-26120
CWE-ID: CWE-94
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vulnerable software:
Smarty
Smarty
Software vendor:
smarty.php.net
smarty.php.net
Description
The vulnerability allows a remote user to execute arbitrary PHP code on the target system.
The vulnerability exists due to improper input validation when processing data passed via an unexpected function name after a "{function name=" substring. A remote user can send a specially crafted request and execute arbitrary PHP code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Remediation
Install updates from vendor's website.