Smarty 'SmartyException' Class Cross Site Scripting Vulnerability

Bugtraq ID: 55506
Class: Input Validation Error
CVE: CVE-2012-4437
Remote: Yes
Local: No
Published: Sep 12 2012 12:00AM
Updated: May 07 2015 05:08PM
Credit: The vendor reported this issue.
Vulnerable: New Digital Group Smarty 3.1.11
Mandriva Business Server 1 X86 64
Mandriva Business Server 1
CiviCRM CiviCRM 4.3.3
CiviCRM CiviCRM 4.3.2
CiviCRM CiviCRM 4.3.1
CiviCRM CiviCRM 4.3
CiviCRM CiviCRM 4.2.9
CiviCRM CiviCRM 4.2.8
CiviCRM CiviCRM 4.2.7
CiviCRM CiviCRM 4.2.4
CiviCRM CiviCRM 4.2.3
CiviCRM CiviCRM 4.2.2
CiviCRM CiviCRM 4.2.1
CiviCRM CiviCRM 4.2
CiviCRM CiviCRM 4.1
CiviCRM CiviCRM 3.3.3
CiviCRM CiviCRM 2.2
CiviCRM CiviCRM 1.0
CiviCRM CiviCRM 4.2.6
CiviCRM CiviCRM 4.2.5
CiviCRM CiviCRM 4.1.1
CiviCRM CiviCRM 4.0.5
CiviCRM CiviCRM 3.1 Beta 5
CiviCRM CiviCRM 3.1 Beta 1
Not Vulnerable: CiviCRM CiviCRM 4.3.4
CiviCRM CiviCRM 4.2.10


 

Privacy Statement
Copyright 2010, SecurityFocus