Vulnerabilities

CVE-2009-5054

by Fred · 03/02/2011

Smarty before 3.0.0 beta 4 does not consider the umask value when setting the permissions of files, which might allow attackers to bypass intended access restrictions via standard filesystem operations.

Date published : 2011-02-03

http://smarty-php.googlecode.com/svn/trunk/distribution/change_log.txt

Similar

Tags: Cybersecurity Alert