CVE-2014-8350 | Smarty up to 2.6.8 language=php> code injection (tps://c / Nessus ID 79070)
A vulnerability was found in Smarty up to 2.6.8. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation of the argument language=php> leads to code injection.
This vulnerability is handled as CVE-2014-8350. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.