Lucene search

PRIOn knowledge basePRION:CVE-2013-2118

HistoryJul 09, 2013 - 5:55 p.m.

Design/Logic Flaw

2013-07-0917:55:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON

SPIP 3.0.x before 3.0.9, 2.1.x before 2.1.22, and 2.0.x before 2.0.23 allows remote attackers to gain privileges and “take editorial control” via vectors related to ecrire/inc/filtres.php.

CPENameOperatorVersion
spipeq3.0.3
spipeq3.0.8
spipeq3.0.4
spipeq3.0.7
spipeq3.0.5
spipeq3.0.2
spipeq3.0.0
spipeq3.0.6
spipeq3.0.1
spipeq2.1.15

Name	Operator	Version
spip	eq	3.0.3
spip	eq	3.0.8
spip	eq	3.0.4
spip	eq	3.0.7
spip	eq	3.0.5
spip	eq	3.0.2
spip	eq	3.0.0
spip	eq	3.0.6
spip	eq	3.0.1
spip	eq	2.1.15

Rows per page:

1-10 of 531

References

contrib.spip.net/SPIP-3-0-9-2-1-22-2-0-23-corrections-de-bug-et-faille?lang=fr

core.spip.org/projects/spip/repository/revisions/20541

www.debian.org/security/2013/dsa-2694

www.openwall.com/lists/oss-security/2013/05/27/2

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON

Related for PRION:CVE-2013-2118