Lucene search
DebianCVELIST:CVE-2014-8350HistoryNov 03, 2014 - 4:00 p.m.
CVE-2014-8350
2014-11-0316:00:00
debian
www.cve.org
Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by “{literal}<{/literal}script language=php>” in a template.
References
advisories.mageia.org/MGASA-2014-0468.html
seclists.org/oss-sec/2014/q4/420
seclists.org/oss-sec/2014/q4/421
www.mandriva.com/security/advisories?name=MDVSA-2014:221
www.securityfocus.com/bid/70708
bugs.debian.org/cgi-bin/bugreport.cgi?bug=765920
code.google.com/p/smarty-php/source/browse/trunk/distribution/change_log.txt?r=4902
exchange.xforce.ibmcloud.com/vulnerabilities/97725
Related
openvas
openvas
Fedora Update for php-Smarty FEDORA-2014-13574
2014-11-05 00:00:00
Debian: Security Advisory (DLA-452-1)
2023-03-08 00:00:00
Fedora Update for php-Smarty FEDORA-2014-13570
2014-11-05 00:00:00
github
github
Smarty arbitrary PHP code execution
2022-05-17 01:13:38
nessus
nessus
Fedora 20 : php-Smarty-3.1.21-1.fc20 (2014-13574)
2014-11-05 00:00:00
Fedora 19 : php-Smarty-3.1.21-1.fc19 (2014-13570)
2014-11-05 00:00:00
Debian DLA-452-1 : smarty3 security update
2016-05-04 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: php-Smarty-3.1.21-1.fc19
2014-11-05 03:55:27
[SECURITY] Fedora 21 Update: php-Smarty-3.1.21-1.fc21
2014-11-10 06:28:50
[SECURITY] Fedora 20 Update: php-Smarty-3.1.21-1.fc20
2014-11-05 03:57:11
osv
osv
smarty3 - security update
2016-05-03 00:00:00
Smarty arbitrary PHP code execution
2022-05-17 01:13:38
prion
prion
Design/Logic Flaw
2014-11-03 16:55:00
debiancve
debiancve
CVE-2014-8350
2014-11-03 16:55:08
ubuntucve
ubuntucve
CVE-2014-8350
2014-11-03 00:00:00
mageia
mageia
Updated php-smarty packages fix security vulnerability
2014-11-21 15:44:16
Updated php-smarty packages fix security vulnerabilities
2014-11-21 15:44:16
debian
debian
[SECURITY] [DLA 452-1] smarty3 security update
2016-05-03 15:38:19
nvd
nvd
CVE-2014-8350
2014-11-03 16:55:08
cve
cve
CVE-2014-8350
2014-11-03 16:55:08
securityvulns
securityvulns
[ MDVSA-2014:221 ] php-smarty
2014-12-01 00:00:00