Vigil@nce - Vigil@nce - Smarty: Cross Site Scripting via Block Name / Include File Name, analyzed on 30/05/2022
July 2022 by Vigil@nce
Vigil@nce - An attacker can trigger a Cross Site Scripting of Smarty, via Block Name / Include File Name, in order to run JavaScript code in the context of the web site.
Plus d'information sur : https://vigilance.fr/vulnerability/Smarty-Cross-Site-Scripting-via-Block-Name-Include-File-Name-38460