20 matches found
Gentoo Security Advisory GLSA 201006-13 (smarty)
The remote host is missing updates announced in advisory GLSA 201006-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 201006-13 (smarty)
The remote host is missing updates announced in advisory GLSA 201006-13. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Design/Logic Flaw
Unspecified vulnerability in the math plugin in Smarty before 3.0.0 RC1 has unknown impact and remote attack vectors. NOTE: this might overlap CVE-2009-1669...
Debian Security Advisory DSA 1919-2 (smarty)
The remote host is missing an update to smarty announced via advisory DSA 1919-2. OpenVAS Vulnerability Test $Id: deb19192.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 1919-2 smarty Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Debian: Security Advisory (DSA-1919)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1919-1 : smarty - several vulnerabilities
Several remote vulnerabilities have been discovered in Smarty, a PHP templating engine. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4810 The expandquotedtext function allows for certain restrictions in templates, like function calling and PHP...
Debian Security Advisory DSA 1919-1 (smarty)
The remote host is missing an update to smarty announced via advisory DSA 1919-1. OpenVAS Vulnerability Test $Id: deb19191.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1919-1 smarty Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
[SECURITY] [DSA 1919-1] New smarty packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1919-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst October 25, 2009 http://www.debian.org/security/faq -...
DSA-1919-1 smarty - several vulnerabilities
Bulletin has no description...
Ubuntu USN-791-1 (moodle)
The remote host is missing an update to moodle announced via advisory USN-791-1. For details, please visit the referenced security advisories. OpenVAS Vulnerability Test $Id: ubuntu7911.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7911.nasl 7969 2017-12-01 09:23:16Z santu $ Description:...
Ubuntu: Security Advisory (USN-791-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Core 9 FEDORA-2009-5516 (php-Smarty)
The remote host is missing an update to php-Smarty announced via advisory FEDORA-2009-5516. OpenVAS Vulnerability Test $Id: fcore20095516.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5516 php-Smarty Authors: Thomas Reinke Copyright: Copyright c...
Fedora Core 11 FEDORA-2009-5520 (php-Smarty)
The remote host is missing an update to php-Smarty announced via advisory FEDORA-2009-5520. OpenVAS Vulnerability Test $Id: fcore20095520.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5520 php-Smarty Authors: Thomas Reinke Copyright: Copyright c...
Fedora Core 10 FEDORA-2009-5525 (php-Smarty)
The remote host is missing an update to php-Smarty announced via advisory FEDORA-2009-5525. OpenVAS Vulnerability Test $Id: fcore20095525.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5525 php-Smarty Authors: Thomas Reinke Copyright: Copyright c...
Fedora Core 9 FEDORA-2009-5516 (php-Smarty)
The remote host is missing an update to php-Smarty announced via advisory FEDORA-2009-5516. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora Core 11 FEDORA-2009-5520 (php-Smarty)
The remote host is missing an update to php-Smarty announced via advisory FEDORA-2009-5520. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora Core 10 FEDORA-2009-5525 (php-Smarty)
The remote host is missing an update to php-Smarty announced via advisory FEDORA-2009-5525. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora 10 : php-Smarty-2.6.25-1.fc10 (2009-5525)
This update fixes : - Bug 501564 - CVE-2009-1669 Smarty: arbitrary commands execution via shell metacharacters in the equation attribute of the math function Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...
Fedora 11 : php-Smarty-2.6.25-1.fc11 (2009-5520)
This update fixes : - Bug 501564 - CVE-2009-1669 Smarty: arbitrary commands execution via shell metacharacters in the equation attribute of the math function Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...
CVE-2009-1669
CVE-2009-1669 affects the Smarty template engine (Smarty 2.6.22) via the smarty_function_math plugin. The vulnerability allows a context-dependent attacker to execute arbitrary commands through shell metacharacters placed in the equation attribute of the math function, enabling remote code execut...