VYPR
Unrated severityNVD Advisory· Published Jan 2, 2009· Updated Jun 16, 2026

CVE-2008-5813

CVE-2008-5813

Description

SQL injection vulnerability in inc/rubriques.php in SPIP 1.8 before 1.8.3b, 1.9 before 1.9.2g, and 2.0 before 2.0.2 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: some of these details are obtained from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19
  • Spip/Spip19 versions
    cpe:2.3:a:spip:spip:1.8:*:*:*:*:*:*:*+ 18 more
    • cpe:2.3:a:spip:spip:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8.2:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8.2b:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8.3:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8b1:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8b2:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8b3:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8b4:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8b5:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.8b6:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.9.1:rev7385:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.9.1:rev7502:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:1.9.2f:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:2.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:spip:spip:2.0.1:*:*:*:*:*:*:*
    • (no CPE)range: <1.8.3b, <1.9.2g, <2.0.2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.