Remote Code Execution via Crafted HTML File Upload in SPIP Template Composer/Compiler

Remote Code Execution via Crafted HTML File Upload in SPIP Template Composer/Compiler

CVE-2016-7998 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

The SPIP template composer/compiler in SPIP 3.1.2 and earlier allows remote authenticated users to execute arbitrary PHP code by uploading an HTML file with a crafted (1) INCLUDE or (2) INCLURE tag and then accessing it with a valider_xml action.

Learn more about our User Device Pen Test.