Lucene search
K

7 matches found

Debian
Debian
added 2017/06/21 7:39 p.m.13 views

[SECURITY] [DSA 3890-1] spip security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3890-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 21, 2017 https://www.debian.org/security/faq -...

9.8CVSS9.7AI score0.03159EPSS
Exploits0
Debian
Debian
added 2017/06/21 7:39 p.m.13 views

[SECURITY] [DSA 3890-1] spip security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3890-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 21, 2017 https://www.debian.org/security/faq -...

7.5CVSS1.6AI score0.03159EPSS
Exploits0
OSV
OSV
added 2017/06/17 4:29 p.m.16 views

CVE-2017-9736

SPIP 3.1.x before 3.1.6 and 3.2.x before Beta 3 does not remove shell metacharacters from the host field, allowing a remote attacker to cause remote code execution...

9.8CVSS7.5AI score
Exploits0References4
OSV
OSV
added 2017/06/17 4:29 p.m.0 views

DEBIAN-CVE-2017-9736

SPIP 3.1.x before 3.1.6 and 3.2.x before Beta 3 does not remove shell metacharacters from the host field, allowing a remote attacker to cause remote code execution...

9.8CVSS8.1AI score0.03159EPSS
Exploits0References1
CVE
CVE
added 2017/06/17 4:0 p.m.83 views

CVE-2017-9736

CVE-2017-9736 affects SPIP 3.1.x before 3.1.6 and 3.2.x before Beta 3. The flaw arises from insufficient sanitisation of the host field, allowing remote code execution via crafted requests. Debian/DSA advisories indicate fixes are available in SPIP packages (e.g., SPIP 3.1.4-3~deb9u1 for stretch;...

9.8CVSS9.6AI score0.03159EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2017/06/17 4:0 p.m.11 views

CVE-2017-9736

SPIP 3.1.x before 3.1.6 and 3.2.x before Beta 3 does not remove shell metacharacters from the host field, allowing a remote attacker to cause remote code execution...

9.7AI score0.03159EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2017/06/17 4:0 p.m.20 views

CVE-2017-9736

SPIP 3.1.x before 3.1.6 and 3.2.x before Beta 3 does not remove shell metacharacters from the host field, allowing a remote attacker to cause remote code execution...

9.8CVSS9.7AI score0.03159EPSS
Exploits0
Rows per page
Query Builder