prive/formulaires/configurer_preferences.php in SPIP prior to 3.2.8 does not properly validate the couleur, display, display_navigation, display_outils, imessage, and spip_ecran parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
spip spip |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |