Published: 18/01/2017 Updated: 24/05/2017

CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 655

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

The SPIP template composer/compiler in SPIP 3.1.2 and previous versions allows remote authenticated users to execute arbitrary PHP code by uploading an HTML file with a crafted (1) INCLUDE or (2) INCLURE tag and then accessing it with a valider_xml action.

Vulnerable Product	Search on Vulmon	Subscribe to Product
spip spip

Debian Bug report logs - #848641 spip: CVE-2016-9997 CVE-2016-9998 Package: src:spip; Maintainer for src:spip is David Prévot <taffit@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 19 Dec 2016 05:39:01 UTC Severity: important Tags: patch, security, upstream Found in version spip/313 ...

Debian Bug report logs - #847156 spip: CVE-2016-9152 Package: src:spip; Maintainer for src:spip is David Prévot <taffit@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 6 Dec 2016 06:15:01 UTC Severity: important Tags: patch, security, upstream Found in version spip/313-1 Fixed in ve ...

## SPIP 312 Template Compiler/Composer PHP Code Execution (CVE-2016-7998) ### Product Description SPIP is a publishing system for the Internet, which put importance on collaborative working, multilingual environments and ease of use It is free software, distributed under the GNU/GPL licence ### Vulnerability Description The SPIP template co ...

SPIP versions 312 and below suffer from a cross site request forgery vulnerability ...

SPIP versions 312 and below suffer from a PHP code execution vulnerability ...

CWE-20 https://core.spip.net/projects/spip/repository/revisions/23192 https://core.spip.net/projects/spip/repository/revisions/23189 https://core.spip.net/projects/spip/repository/revisions/23186 http://www.openwall.com/lists/oss-security/2016/10/08/6 http://www.openwall.com/lists/oss-security/2016/10/07/5 http://www.openwall.com/lists/oss-security/2016/10/05/17 http://www.securityfocus.com/bid/93451 https://sysdream.com/news/lab/2016-10-19-spip-3-1-2-template-compiler-composer-php-code-execution-cve-2016-7998/https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848641 https://www.exploit-db.com/exploits/40595/

CVE-2016-7998

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect