From 77c1a0d6af83d76ffc029eb6b821735c974c18f9 Mon Sep 17 00:00:00 2001
From: Jonathan Lelievre <jo.lelievre@gmail.com>
Date: Wed, 12 Apr 2023 11:55:34 +0200
Subject: [PATCH] Create CVE-2023-28447.yaml

Add smarty vulnerability
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28447
https://github.com/smarty-php/smarty/security/advisories/GHSA-7j98-h7fp-4vwj
---
 smarty/smarty/CVE-2023-28447.yaml | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 smarty/smarty/CVE-2023-28447.yaml

diff --git a/smarty/smarty/CVE-2023-28447.yaml b/smarty/smarty/CVE-2023-28447.yaml
new file mode 100644
index 000000000..30fe3ca84
--- /dev/null
+++ b/smarty/smarty/CVE-2023-28447.yaml
@@ -0,0 +1,11 @@
+title: Cross site scripting vulnerability in Javascript escaping
+link: https://github.com/smarty-php/smarty/security/advisories/GHSA-7j98-h7fp-4vwj
+cve: CVE-2023-28447
+branches:
+    '3.1':
+        time: 2023-03-28 19:41:00
+        versions: [ '<3.1.48' ]
+    master:
+        time: 2023-03-28 19:46:00
+        versions: [ '>=4.0.0', '<4.1.1' ]
+reference: composer://smarty/smarty