CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2022-28961

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Spip Web Framework v3.1.13 and below was discovered to contain multiple SQL injection vulnerabilities at /ecrire via the liertrad and where parameters...

8.8CVSS8.1AI score0.00743EPSS

Exploits1References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2022-28960

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A PHP injection vulnerability in Spip before v3.2.8 allows attackers to execute arbitrary PHP code via the oups parameter at /ecrire. CVE-2022-28960 Note that...

8.8CVSS8.4AI score0.00626EPSS

Exploits1References2

ATTACKERKB•added 2022/05/19 9:15 p.m.•3 views

CVE-2022-28961

Spip Web Framework v3.1.13 and below was discovered to contain multiple SQL injection vulnerabilities at /ecrire via the liertrad and where parameters...

8.8CVSS5.9AI score0.00743EPSS

Exploits1References6

ATTACKERKB•added 2022/05/19 9:15 p.m.•2 views

CVE-2022-28960

A PHP injection vulnerability in Spip before v3.2.8 allows attackers to execute arbitrary PHP code via the oups parameter at /ecrire...

8.8CVSS6.2AI score0.00626EPSS

Exploits1References6

OSV•added 2022/05/19 9:15 p.m.•0 views

DEBIAN-CVE-2022-28961

Spip Web Framework v3.1.13 and below was discovered to contain multiple SQL injection vulnerabilities at /ecrire via the liertrad and where parameters...

8.8CVSS8.3AI score0.00743EPSS

Exploits1References1

OSV•added 2022/05/19 9:15 p.m.•0 views

UBUNTU-CVE-2022-28960

A PHP injection vulnerability in Spip before v3.2.8 allows attackers to execute arbitrary PHP code via the oups parameter at /ecrire...

8.8CVSS7.5AI score0.00626EPSS

Exploits1References9

CNNVD•added 2022/05/19 12:0 a.m.•3 views

SPIP 代码注入漏洞

SPIP is a Web-based content publishing system used primarily for online collaboration. A remote code execution vulnerability exists in versions of SPIP prior to 3.2.8, which are primarily used for online collaboration. The vulnerability stems from the oups parameter of /ecrire not properly...

8.8CVSS6.9AI score0.00626EPSS

Exploits1References6

OSV•added 2016/12/17 3:59 a.m.•1 views

DEBIAN-CVE-2016-9998

SPIP 3.1.x suffer from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/infoplugin.php involving the $plugin parameter, as demonstrated by a /ecrire/?exec=infoplugin URL...

6.1CVSS6.4AI score0.00292EPSS

Exploits0References1

OSV•added 2016/12/17 3:59 a.m.•0 views

UBUNTU-CVE-2016-9997

SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/pucestatut.php involving the $id parameter, as demonstrated by a /ecrire/?exec=pucestatut URL...

6.1CVSS6.4AI score0.00292EPSS

Exploits0References3

OSV•added 2016/12/17 3:59 a.m.•0 views

UBUNTU-CVE-2016-9998

SPIP 3.1.x suffer from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/infoplugin.php involving the $plugin parameter, as demonstrated by a /ecrire/?exec=infoplugin URL...

6.1CVSS6.4AI score0.00292EPSS

Exploits0References3

OSV•added 2016/12/05 6:59 p.m.•0 views

UBUNTU-CVE-2016-9152

Cross-site scripting XSS vulnerability in ecrire/exec/plonger.php in SPIP 3.1.3 allows remote attackers to inject arbitrary web script or HTML via the rac parameter...

6.1CVSS6.5AI score0.00252EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by