Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2019/10/04 9:51 p.m.24 views

CVE-2008-1066

The modifier.regexreplace.php plugin in Smarty before 2.6.19, as used by Serendipity S9Y and other products, allows attackers to call arbitrary PHP functions via templates, related to a '\0' character in a search string...

7.5CVSS6.9AI score0.01954EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/02/12 12:0 a.m.26 views

Gentoo Security Advisory GLSA 201111-04 (PhpDocumentor)

The remote host is missing updates announced in advisory GLSA 201111-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.8AI score0.01954EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/11/14 12:0 a.m.37 views

GLSA-201111-04 : phpDocumentor: Function call injection

The remote host is affected by the vulnerability described in GLSA-201111-04 phpDocumentor: Function call injection phpDocumentor bundles Smarty with the modifier.regexreplace.php plug-in which does not properly sanitize input related to the ASCII NUL character in a search string. Impact : A remo...

7.5CVSS5.8AI score0.01954EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.33 views

Gentoo Security Advisory GLSA 201006-13 (smarty)

The remote host is missing updates announced in advisory GLSA 201006-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

10CVSS1.1AI score0.14117EPSS
Exploits1
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.27 views

Gentoo Security Advisory GLSA 201006-13 (smarty)

The remote host is missing updates announced in advisory GLSA 201006-13. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

10CVSS6.6AI score0.14117EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.18 views

Fedora Update for gallery2 FEDORA-2008-2650

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5CVSS6.7AI score0.01954EPSS
Exploits0References2
Debian
Debian
added 2008/03/16 11:36 a.m.27 views

[SECURITY] [DSA 1520-1] New smarty packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1520-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 16, 2008 http://www.debian.org/security/faq -...

7.5CVSS6.3AI score0.01954EPSS
Exploits0
ALT Linux
ALT Linux
added 2008/03/12 12:0 a.m.30 views

Security fix for the ALT Linux 6 package smarty version 2.6.19-alt1

March 12, 2008 Vladimir V Kamarzin 2.6.19-alt1 - 2.6.19. Security fixes: + CVE-2008-1066 Smarty "regexreplace" Modifier Template Security Bypass...

7.5CVSS6.2AI score0.01954EPSS
Exploits0
NVD
NVD
added 2008/02/28 8:44 p.m.22 views

CVE-2008-1066

The modifier.regexreplace.php plugin in Smarty before 2.6.19, as used by Serendipity S9Y and other products, allows attackers to call arbitrary PHP functions via templates, related to a '\0' character in a search string...

7.5CVSS6.5AI score0.01954EPSS
Exploits0References17
CVE
CVE
added 2008/02/28 8:0 p.m.67 views

CVE-2008-1066

The CVE-2008-1066 entry concerns Smarty (PHP template engine). The vulnerable component is the modifier.regex_replace.php plug‑in, which does not properly sanitize input related to the ASCII NUL character in a search string. This can allow a remote attacker to call arbitrary PHP functions via tem...

7.5CVSS6.3AI score0.01954EPSS
Exploits0References17Affected Software1
Rows per page
Query Builder