Launchpad CVE tracker

CVE 2008-4811

The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 r2797 and earlier allows remote attackers to execute arbitrary PHP code via vectors related to templates and a \ (backslash) before a dollar-sign character.

Related bugs and status

CVE-2008-4811 (Candidate) is related to these bugs:

Bug #491129: Smarty version in Mahara 1.0 and 1.1 has security vulnerabilities

		In	Importance	Status
491129	Smarty version in Mahara 1.0 and 1.1 has security vulnerabilities	Mahara	Undecided	Fix Released
491129	Smarty version in Mahara 1.0 and 1.1 has security vulnerabilities	Mahara 1.0	Undecided	Fix Released
491129	Smarty version in Mahara 1.0 and 1.1 has security vulnerabilities	Mahara 1.1	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2008102...
MISC: http://securityvulns.r...
SECUNIA: 32329
DEBIAN: DSA-1691
BID: 31862
XF: smarty-expandquotedtex...

Launchpad.net

CVE 2008-4811

Related bugs and status

Related bugs

References