VYPR
Unrated severityNVD Advisory· Published Apr 10, 2019· Updated Aug 4, 2024

CVE-2019-11071

CVE-2019-11071

Description

SPIP 3.1 before 3.1.10 and 3.2 before 3.2.4 allows authenticated visitors to execute arbitrary code on the host server because var_memotri is mishandled.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Spip/Spipinferred2 versions
    >=3.1,<3.1.10 || >=3.2,<3.2.4+ 1 more
    • (no CPE)range: >=3.1,<3.1.10 || >=3.2,<3.2.4
    • (no CPE)range: <3.1.10 and <3.2.4

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.