SPIP 3.0.x before 3.0.9, 2.1.x before 2.1.22, and 2.0.x before 2.0.23 allows remote attackers to gain privileges and take editorial control via vectors related to ecrire/inc/filtres.php.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Spip | Spip | 3.0.0 (including) | 3.0.0 (including) |
Spip | Spip | 3.0.1 (including) | 3.0.1 (including) |
Spip | Spip | 3.0.2 (including) | 3.0.2 (including) |
Spip | Spip | 3.0.3 (including) | 3.0.3 (including) |
Spip | Spip | 3.0.4 (including) | 3.0.4 (including) |
Spip | Spip | 3.0.5 (including) | 3.0.5 (including) |
Spip | Spip | 3.0.6 (including) | 3.0.6 (including) |
Spip | Spip | 3.0.7 (including) | 3.0.7 (including) |
Spip | Spip | 3.0.8 (including) | 3.0.8 (including) |
Spip | Ubuntu | lucid | * |
Spip | Ubuntu | precise | * |
Spip | Ubuntu | quantal | * |
Spip | Ubuntu | raring | * |
Spip | Ubuntu | upstream | * |