EPSS
Percentile
55.4%
spip/spis is vulnerable to remote code execution. The vulnerability that exists in the file upload feature allows attacker to upload and execute malicious pictures with double extension
git.spip.net/spip/spip/commit/1cf91def15966406ddd0488cf9d1ecd1ae82d47a
security-tracker.debian.org/tracker/CVE-2021-44123