SPIP code injection vulnerability (CNVD-2016-01731)
SPIP is a free Web-based content publishing system. The system is primarily used for online collaboration. A code injection vulnerability exists in SPIP. An attacker can exploit this vulnerability to inject arbitrary PHP code by performing an add content operation...