Lucene search
MitreCVELIST:CVE-2022-28961HistoryMay 19, 2022 - 8:26 p.m.
CVE-2022-28961
2022-05-1920:26:16
mitre
www.cve.org
0.001 Low
EPSS
Percentile
49.6%
Spip Web Framework v3.1.13 and below was discovered to contain multiple SQL injection vulnerabilities at /ecrire via the lier_trad and where parameters.
References
blog.spip.net/Mise-a-jour-CRITIQUE-de-securite-SPIP-3-2-8-et-SPIP-3-1-13.html
github.com/spip/SPIP/commit/0394b44774555ae8331b6e65e35065dfa0bb41e4
github.com/spip/SPIP/commit/6c1650713fc948318852ace759aab8f1a84791cf
thinkloveshare.com/en/hacking/rce_on_spip_and_root_me/
www.root-me.org/fr/Informations/Faiblesses-decouvertes/
Related
cnvd
cnvd
SPIP SQL Injection Vulnerability
2022-05-23 00:00:00
cve
cve
CVE-2022-28961
2022-05-19 21:15:08
prion
prion
Sql injection
2022-05-19 21:15:00
nvd
nvd
CVE-2022-28961
2022-05-19 21:15:08
osv
osv
CVE-2022-28961
2022-05-19 21:15:00
spip - security update
2020-11-25 00:00:00
debiancve
debiancve
CVE-2022-28961
2022-05-19 21:15:08
veracode
veracode
SQL Injection
2022-05-30 22:49:26
ubuntucve
ubuntucve
CVE-2022-28961
2022-05-19 00:00:00
openvas
openvas
SPIP < 3.1.14 Multiple Vulnerabilities
2022-06-01 00:00:00
Debian: Security Advisory (DSA-4798-1)
2020-11-26 00:00:00