Lucene search
K

6 matches found

GithubExploit
GithubExploit
added 2020/02/18 3:32 a.m.346 views

Exploit for Observable Discrepancy in Spip

CVE-2019-16394 A simple POC python script of CVE-2019-16394...

5.3CVSS6.1AI score0.07538EPSS
Exploits2
Debian
Debian
added 2019/09/25 6:38 a.m.76 views

[SECURITY] [DSA 4532-1] spip security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...

5.8CVSS1.6AI score0.07538EPSS
Exploits2
Debian
Debian
added 2019/09/25 6:38 a.m.107 views

[SECURITY] [DSA 4532-1] spip security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...

6.5CVSS6.7AI score0.07538EPSS
Exploits2
OpenVAS
OpenVAS
added 2019/09/24 12:0 a.m.22 views

SPIP < 3.1.11, 3.2.x < 3.2.5 Multiple Vulnerabilities

SPIP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:spip:spip"; ifdescription...

6.5CVSS7.2AI score0.07538EPSS
Exploits2References1
OSV
OSV
added 2019/09/17 9:15 p.m.4 views

UBUNTU-CVE-2019-16394

SPIP before 3.1.11 and 3.2 before 3.2.5 provides different error messages from the password-reminder page depending on whether an e-mail address exists, which might help attackers to enumerate subscribers...

5.3CVSS6.8AI score0.07538EPSS
Exploits2References7
CVE
CVE
added 2019/09/17 8:47 p.m.151 views

CVE-2019-16394

SPIP (website engine) versions affected: 3.1.x prior to 3.1.11 and 3.2.x prior to 3.2.5. The issue is in the password reminder flow, where error messages differ depending on whether the provided e-mail exists, enabling potential user enumeration of subscribers. Root cause: non-homogeneous handlin...

5.3CVSS5.8AI score0.07538EPSS
Exploits2References8Affected Software1
Rows per page
Query Builder