11 matches found
CVE-2008-4811
The expandquotedtext function in libs/SmartyCompiler.class.php in Smarty 2.6.20 r2797 and earlier allows remote attackers to execute arbitrary PHP code via vectors related to templates and a \ backslash before a dollar-sign character...
Gentoo Security Advisory GLSA 201006-13 (smarty)
The remote host is missing updates announced in advisory GLSA 201006-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 201006-13 (smarty)
The remote host is missing updates announced in advisory GLSA 201006-13. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Ubuntu USN-791-1 (moodle)
The remote host is missing an update to moodle announced via advisory USN-791-1. For details, please visit the referenced security advisories. OpenVAS Vulnerability Test $Id: ubuntu7911.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7911.nasl 7969 2017-12-01 09:23:16Z santu $ Description:...
Fedora Update for php-Smarty FEDORA-2008-9401
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for php-Smarty FEDORA-2008-10409
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Security fix for the ALT Linux 7 package smarty version 2.6.22-alt1
Jan. 27, 2009 Vladimir V Kamarzin 2.6.22-alt1 - Updated to 2.6.22. Security fixes: + CVE-2008-4810 + CVE-2008-4811...
Security fix for the ALT Linux 6 package smarty version 2.6.22-alt1
Jan. 27, 2009 Vladimir V Kamarzin 2.6.22-alt1 - Updated to 2.6.22. Security fixes: + CVE-2008-4810 + CVE-2008-4811...
Debian Security Advisory DSA 1691-1 (moodle)
The remote host is missing an update to moodle announced via advisory DSA 1691-1. OpenVAS Vulnerability Test $Id: deb16911.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1691-1 moodle Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
[SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1691-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst December 22, 2008 http://www.debian.org/security/faq -...
CVE-2008-4811
CVE-2008-4811 affects Smarty up to version 2.6.20 (r2797) and earlier. The issue is in _expand_quoted_text() within libs/Smarty_Compiler.class.php, described as an input sanitation flaw that can allow remote code execution in PHP when processing templates, via vectors involving a backslash before...