CVE-2008-1066

Related Files

Gentoo Linux Security Advisory 201111-04

Posted Nov 12, 2011

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201111-4 - phpDocumentor bundles Smarty which contains an input sanitation flaw, allowing attackers to call arbitrary PHP functions. Versions less than 1.4.3-r1 are affected.

tags | advisory, arbitrary, php

systems | linux, gentoo

advisories | CVE-2008-1066

SHA-256 | 15090de5826324024b831e63a61e6a4e9ad35fcdd8b96ed6d93a9d44c2882f40

Download | Favorite | View

Gentoo Linux Security Advisory 201006-13

Posted Jun 3, 2010

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201006-13 - Multiple vulnerabilities in the Smarty template engine might allow remote attackers to execute arbitrary PHP code. Versions less than 2.6.23 are affected.

tags | advisory, remote, arbitrary, php, vulnerability

systems | linux, gentoo

advisories | CVE-2008-1066, CVE-2008-4810, CVE-2008-4811, CVE-2009-1669

SHA-256 | 0f96060e48a38b2da707c8d1b4e248c7349ea838ebce02cad25d161a76115684

Download | Favorite | View

Debian Linux Security Advisory 1520-1

Posted Mar 17, 2008

Authored by Debian | Site debian.org

Debian Security Advisory 1520-1 - It was discovered that the regex module in Smarty, a PHP templating engine, allows attackers to call arbitrary PHP functions via templates using the regex_replace plugin by a specially crafted search string.

tags | advisory, arbitrary, php

systems | linux, debian

advisories | CVE-2008-1066

SHA-256 | 3b96c9c75d168cb1dab3f2e26096921aa454050b3ea5aaa6a645a8a2e6a1d152

Download | Favorite | View