Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2019/10/04 8:37 p.m.20 views

CVE-2008-4811

The expandquotedtext function in libs/SmartyCompiler.class.php in Smarty 2.6.20 r2797 and earlier allows remote attackers to execute arbitrary PHP code via vectors related to templates and a \ backslash before a dollar-sign character...

7.5CVSS7.8AI score0.01644EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.33 views

Gentoo Security Advisory GLSA 201006-13 (smarty)

The remote host is missing updates announced in advisory GLSA 201006-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

10CVSS1.1AI score0.14117EPSS
Exploits1
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.27 views

Gentoo Security Advisory GLSA 201006-13 (smarty)

The remote host is missing updates announced in advisory GLSA 201006-13. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

10CVSS6.6AI score0.14117EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/06/30 12:0 a.m.48 views

Ubuntu USN-791-1 (moodle)

The remote host is missing an update to moodle announced via advisory USN-791-1. For details, please visit the referenced security advisories. OpenVAS Vulnerability Test $Id: ubuntu7911.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7911.nasl 7969 2017-12-01 09:23:16Z santu $ Description:...

10CVSS0.5AI score0.54003EPSS
Exploits23References1
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.15 views

Fedora Update for php-Smarty FEDORA-2008-9401

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5CVSS7.6AI score0.01644EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.17 views

Fedora Update for php-Smarty FEDORA-2008-10409

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5CVSS7.6AI score0.01644EPSS
Exploits0References2
ALT Linux
ALT Linux
added 2009/01/27 12:0 a.m.18 views

Security fix for the ALT Linux 7 package smarty version 2.6.22-alt1

Jan. 27, 2009 Vladimir V Kamarzin 2.6.22-alt1 - Updated to 2.6.22. Security fixes: + CVE-2008-4810 + CVE-2008-4811...

7.5CVSS6.2AI score0.02187EPSS
Exploits0
ALT Linux
ALT Linux
added 2009/01/27 12:0 a.m.42 views

Security fix for the ALT Linux 6 package smarty version 2.6.22-alt1

Jan. 27, 2009 Vladimir V Kamarzin 2.6.22-alt1 - Updated to 2.6.22. Security fixes: + CVE-2008-4810 + CVE-2008-4811...

7.5CVSS6.2AI score0.02187EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/12/29 12:0 a.m.39 views

Debian Security Advisory DSA 1691-1 (moodle)

The remote host is missing an update to moodle announced via advisory DSA 1691-1. OpenVAS Vulnerability Test $Id: deb16911.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1691-1 moodle Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

10CVSS0.6AI score0.10503EPSS
Exploits8
Debian
Debian
added 2008/12/22 8:27 a.m.102 views

[SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1691-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst December 22, 2008 http://www.debian.org/security/faq -...

10CVSS10AI score0.10503EPSS
Exploits8
CVE
CVE
added 2008/10/31 5:18 p.m.76 views

CVE-2008-4811

CVE-2008-4811 affects Smarty up to version 2.6.20 (r2797) and earlier. The issue is in _expand_quoted_text() within libs/Smarty_Compiler.class.php, described as an input sanitation flaw that can allow remote code execution in PHP when processing templates, via vectors involving a backslash before...

7.5CVSS7.7AI score0.01644EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder