NVD脆弱性詳細

Exploit、PoC検索

Exploit DB

NVD脆弱性検索トップ

->

NVD脆弱性詳細

CVE-2024-7954

概要	The porte_plume plugin used by SPIP before 4.30-alpha2, 4.2.13, and 4.1.16 is vulnerable to an arbitrary code execution vulnerability. A remote and unauthenticated attacker can execute arbitrary PHP as the SPIP user by sending a crafted HTTP request.
公表日	2024年8月24日3:15
登録日	2024年8月26日16:56
最終更新日	2024年8月24日3:46

関連情報、対策とツール

No	URL	refsource	タグ
1	https://vulncheck.com/advisories/spip-porte-plume
2	https://blog.spip.net/Mise-a-jour-critique-de-securite-sortie-de-SPIP-4-3-0-alpha2-SPIP-4-2-13-SPIP-4.html
3	https://thinkloveshare.com/hacking/spip_preauth_rce_2024_part_1_the_feather/

共通脆弱性一覧