Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2012-4277

Published: 13 August 2012

Cross-site scripting (XSS) vulnerability in the smarty_function_html_options_optoutput function in distribution/libs/plugins/function.html_options.php in Smarty before 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Priority

Medium

Status

Package Release Status
smarty3
Launchpad, Ubuntu, Debian
hardy Does not exist

lucid Does not exist

natty Ignored
(reached end-of-life)
oneiric Ignored
(reached end-of-life)
precise Does not exist
(precise was needs-triage)
quantal Not vulnerable
(3.1.10-1)
raring Not vulnerable
(3.1.10-1)
saucy Not vulnerable
(3.1.10-1)
trusty Does not exist
(trusty was not-affected [3.1.10-1])
upstream
Released (3.1.10-1)
utopic Not vulnerable
(3.1.10-1)
vivid Not vulnerable
(3.1.10-1)
wily Not vulnerable
(3.1.10-1)
xenial Not vulnerable
(3.1.10-1)
yakkety Not vulnerable
(3.1.10-1)
zesty Not vulnerable
(3.1.10-1)