Smarty Template Engine 'regex_replace' Template Security Bypass Vulnerability

Smarty Template Engine 'regex_replace' Template Security Bypass Vulnerability

Smarty Template Engine is prone to a security-bypass vulnerability because it fails to adequately sanitize user-supplied input. This issue occurs because of a modifier error in the template security.

Attackers can exploit this issue to execute arbitrary script code in the context of the application.

Versions prior to Smarty Template Engine 2.6.19 are vulnerable.