Smarty Template Engine 'regex_replace' Template Security Bypass Vulnerability

Bugtraq ID: 28105
Class: Input Validation Error
CVE: CVE-2008-1066
Remote: Yes
Local: No
Published: Mar 05 2008 12:00AM
Updated: May 07 2015 05:15PM
Credit: The vendor disclosed this issue.
Vulnerable: Smarty Template Engine 2.6.18
Smarty Template Engine 2.6.17
Smarty Template Engine 2.6.16
Smarty Template Engine 2.6.15
Smarty Template Engine 2.6.14
Smarty Template Engine 2.6.13
Smarty Template Engine 2.6.12
Smarty Template Engine 2.6.11
Smarty Template Engine 2.6.10
Smarty Template Engine 2.6.9
Smarty Template Engine 2.6.8
Smarty Template Engine 2.6.7
+ Gentoo Linux
Smarty Template Engine 2.6.6
Smarty Template Engine 2.6.5
Smarty Template Engine 2.6.4
Smarty Template Engine 2.6.3
Smarty Template Engine 2.6.2
Smarty Template Engine 2.6.1
Smarty Template Engine 2.6
S9Y Serendipity 1.2.1
S9Y Serendipity 1.1.4
S9Y Serendipity 1.1.3
S9Y Serendipity 1.1.1
S9Y Serendipity 1.0.4
S9Y Serendipity 1.0.3
S9Y Serendipity 0.9.1
S9Y Serendipity 0.8.2
S9Y Serendipity 0.8.1
S9Y Serendipity 0.8 -beta6 Snapshot
S9Y Serendipity 0.8 -beta6
S9Y Serendipity 0.8 -beta5
S9Y Serendipity 0.8
S9Y Serendipity 0.7.1
S9Y Serendipity 0.7 beta3
S9Y Serendipity 0.7 beta1
S9Y Serendipity 0.7 -rc1
S9Y Serendipity 0.7 -beta4
S9Y Serendipity 0.7 -beta2
S9Y Serendipity 0.7
S9Y Serendipity 0.6 -rc2
S9Y Serendipity 0.6 -rc1
S9Y Serendipity 0.6 -pl3
S9Y Serendipity 0.6 -pl2
S9Y Serendipity 0.6 -pl1
S9Y Serendipity 0.6
S9Y Serendipity 0.5 -pl1
S9Y Serendipity 0.5
S9Y Serendipity 0.4
S9Y Serendipity 0.3
S9Y Serendipity 1.3-beta1
S9Y Serendipity 1.2-beta5
S9Y Serendipity 1.2
S9Y Serendipity 1.0.beta 3
S9Y Serendipity 1.0.beta 2
Redhat Fedora 7
phpDocumentor phpDocumentor 1.4.3-r1
Gentoo Linux
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Not Vulnerable: Smarty Template Engine 2.6.19
S9Y Serendipity 1.3


 

Privacy Statement
Copyright 2010, SecurityFocus