Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:34033
HistoryFeb 07, 2022 - 10:32 p.m.

Remote Code Execution (RCE)

2022-02-0722:32:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
remote code execution
spip/spis
vulnerability
file upload
double extension
attack

EPSS

0.002

Percentile

55.4%

spip/spis is vulnerable to remote code execution. The vulnerability that exists in the file upload feature allows attacker to upload and execute malicious pictures with double extension

EPSS

0.002

Percentile

55.4%