• info
• discussion
• exploit
• solution
• references

GNU SPIP Unspecified PHP Code Execution Vulnerability

Solution:
An unofficial patch is available.

---
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.


GNU SPIP 1.4.2

• Simon Baptiste SPIP-v1-4-3.patch
  http://www.securityfocus.com/data/vulnerabilities/patches/SPIP-v1-4-3. patch


• Simon Baptiste SPIP-v1-4-3.patch.gz
  http://www.e-glop.net/dev/spip/SPIP-v1-4-3.patch.gz

GNU SPIP 1.5.2

• Simon Baptiste SPIP-v1-5-3.patch
  http://www.securityfocus.com/data/vulnerabilities/patches/SPIP-v1-5-3. patch


• Simon Baptiste SPIP-v1-5-3.patch.gz
  http://www.e-glop.net/dev/spip/SPIP-v1-5-3.patch.gz

GNU SPIP 1.6

• Simon Baptiste SPIP-v1-6-1.patch
  http://www.securityfocus.com/data/vulnerabilities/patches/SPIP-v1-6-1. patch


• Simon Baptiste SPIP-v1-6-1.patch.gz
  http://www.e-glop.net/dev/spip/SPIP-v1-6-1.patch.gz