Lucene search
GoogleOSV:CVE-2016-7982HistoryJan 18, 2017 - 5:59 p.m.
CVE-2016-7982
2017-01-1817:59:00
Google
osv.dev
6
Directory traversal vulnerability in ecrire/exec/valider_xml.php in SPIP 3.1.2 and earlier allows remote attackers to enumerate the files on the system via the var_url parameter in a valider_xml action.
References
www.openwall.com/lists/oss-security/2016/10/05/17
www.openwall.com/lists/oss-security/2016/10/06/6
www.openwall.com/lists/oss-security/2016/10/12/8
www.securityfocus.com/bid/93451
core.spip.net/projects/spip/repository/revisions/23200
sysdream.com/news/lab/2016-10-19-spip-3-1-1-3-1-2-file-enumeration-path-traversal-cve-2016-7982/
Related
cvelist
cvelist
CVE-2016-7982
2017-01-18 17:00:00
zdt
zdt
SPIP 3.1.2 File Enumeration / Path Traversal Vulnerabilities
2016-10-20 00:00:00
debiancve
debiancve
CVE-2016-7982
2017-01-18 17:59:00
ubuntucve
ubuntucve
CVE-2016-7982
2017-01-18 00:00:00
exploitpack
exploitpack
SPIP 3.1.13.1.2 - File Enumeration Path Traversal
2016-10-20 00:00:00
packetstorm
packetstorm
SPIP 3.1.2 File Enumeration / Path Traversal
2016-10-20 00:00:00
cve
cve
CVE-2016-7982
2017-01-18 17:59:00
prion
prion
Directory traversal
2017-01-18 17:59:00
nvd
nvd
CVE-2016-7982
2017-01-18 17:59:00
exploitdb
exploitdb
SPIP 3.1.1/3.1.2 - File Enumeration / Path Traversal
2016-10-20 00:00:00
osv
osv
spip - security update
2016-11-02 00:00:00
nessus
nessus
Debian DLA-695-1 : spip security update
2016-11-03 00:00:00
openvas
openvas
SPIP < 3.1.3 Multiple Vulnerabilities
2016-11-08 00:00:00
Debian: Security Advisory (DLA-695-1)
2023-03-08 00:00:00
debian
debian
[SECURITY] [DLA 695-1] spip security update
2016-11-02 22:00:02