Lucene search
GoogleOSV:CVE-2021-44118HistoryJan 26, 2022 - 12:15 p.m.
CVE-2021-44118
2022-01-2612:15:07
Google
osv.dev
4
spip 4.0.0
cross site scripting
xss
vulnerability
svg
malicious code
web pages
authenticated attacker
client side
stored xss
SPIP 4.0.0 is affected by a Cross Site Scripting (XSS) vulnerability. To exploit the vulnerability, a visitor must browse to a malicious SVG file. The vulnerability allows an authenticated attacker to inject malicious code running on the client side into web pages visited by other users (stored XSS).
Related
debiancve
debiancve
CVE-2021-44118
2022-01-26 12:15:07
prion
prion
Cross site scripting
2022-01-26 12:15:00
nvd
nvd
CVE-2021-44118
2022-01-26 12:15:07
veracode
veracode
Cross-site Scripting (XSS)
2022-02-07 22:33:22
cnvd
cnvd
SPIP SVG Cross-Site Scripting Vulnerability
2022-01-28 00:00:00
ubuntucve
ubuntucve
CVE-2021-44118
2022-01-26 00:00:00
cvelist
cvelist
CVE-2021-44118
2022-01-26 11:07:57
cve
cve
CVE-2021-44118
2022-01-26 12:15:07
osv
osv
spip - security update
2021-12-29 00:00:00
spip - security update
2021-12-22 00:00:00
spip vulnerabilities
2022-06-16 16:22:11
openvas
openvas
Debian: Security Advisory (DLA-2867-1)
2021-12-30 00:00:00
SPIP < 3.2.12, 4.x < 4.0.1 Multiple Vulnerabilities
2022-01-27 00:00:00
Debian: Security Advisory (DSA-5028-1)
2021-12-23 00:00:00
nessus
nessus
Ubuntu 20.04 LTS : SPIP vulnerabilities (USN-5482-2)
2023-03-02 00:00:00
Ubuntu 18.04 LTS : SPIP vulnerabilities (USN-5482-1)
2022-06-17 00:00:00
ubuntu
ubuntu
SPIP vulnerabilities
2023-03-02 00:00:00
SPIP vulnerabilities
2022-06-16 00:00:00