Security warning

32 views
Skip to first unread message

Tom

unread,
Nov 12, 2013, 11:24:05 PM11/12/13
to smarty-d...@googlegroups.com

Hi all developers.

A client is saying that his firewall scanner is being triggered with the following errors

smarty/Smarty-3.1.12/libs/sysplugins/smarty_internal_function_call_handler.php

Possible PHP injection (code executed from superglobal variable)

eval($_code);


uwe.tews

unread,
Nov 12, 2013, 11:32:04 PM11/12/13
to smarty-d...@googlegroups.com
There is no code executed from superglobal variable. Maybe the scanner is confused because $_code starts with "$_".

Tom

unread,
Nov 12, 2013, 11:40:56 PM11/12/13
to smarty-d...@googlegroups.com
Thank you very much!
Reply all
Reply to author
Forward
0 new messages