5 matches found
[SECURITY] [DSA 4532-1] spip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4532-1] spip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...
SPIP < 3.1.11, 3.2.x < 3.2.5 Multiple Vulnerabilities
SPIP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:spip:spip"; ifdescription...
CVE-2019-16393
SPIP before 3.1.11 and 3.2 before 3.2.5 mishandles redirect URLs in ecrire/inc/headers.php with a %0D, %0A, or %20 character...
CVE-2019-16393
CVE-2019-16393 affects SPIP web CMS: versions 3.1.x before 3.1.11 and 3.2.x before 3.2.5 mishandle redirect URLs in ecrire/inc/headers.php when encountering %0D, %0A, or %20 characters. Root cause is improper handling of redirect URLs, as described in multiple advisories. Practical impact details...