|
|
CVE Reference: CVE-2008-4810 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-4810 |
|
|
Description: The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 before r2797 allows remote attackers to execute arbitrary PHP code via vectors related to templates and (1) a dollar-sign character, aka "php executed in templates;" and (2) a double quoted literal string, aka a "function injection security hole." NOTE: each vector affects slightly different SVN revisions. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/46031 SAID Secunia Advisory: SA32329 MLIST http://www.openwall.com/lists/oss-security/2008/10/25/2 MISC http://securityvulns.ru/Udocument746.html DEBIAN http://www.debian.org/security/2008/dsa-1691 CONFIRM http://code.google.com/p/smarty-php/source/detail?r=2797&path=/trunk/libs/Smarty_Compiler.class.php http://smarty-php.googlecode.com/svn/trunk/NEWS http://code.google.com/p/smarty-php/source/detail?r=2784&path=/trunk/libs/Smarty_Compiler.class.php BID 31862 |
|
| Return to the previous page. |
