0.001 Low
EPSS
Percentile
47.5%
SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/puce_statut.php involving the $id parameter, as demonstrated by a /ecrire/?exec=puce_statut URL.
$id
core.spip.net/projects/spip/repository/revisions/23288
launchpad.net/bugs/cve/CVE-2016-9997
nvd.nist.gov/vuln/detail/CVE-2016-9997
security-tracker.debian.org/tracker/CVE-2016-9997
www.cve.org/CVERecord?id=CVE-2016-9997