Main Vulnerability Database SB2016040812

SB2016040812 - Code Injection in spip.net SPIP

Published: April 8, 2016 Updated: August 9, 2020

Security Bulletin ID SB2016040812

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Code Injection (CVE-ID: CVE-2016-3154)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

The encoder_contexte_ajax function in ecrire/inc/filtres.php in SPIP 2.x before 2.1.19, 3.0.x before 3.0.22, and 3.1.x before 3.1.1 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object.

Remediation

Install update from vendor's website.

References

http://www.debian.org/security/2016/dsa-3518
https://blog.spip.net/Mise-a-jour-CRITIQUE-de-securite-Sortie-de-SPIP-3-1-1-SPIP-3-0-22-et-SPIP-2-1.html?lang=fr
https://core.spip.net/projects/spip/repository/revisions/22903