CVE-2006-1702
EPSS 2.1%
Description
PHP remote file inclusion vulnerability in spip_login.php3 in SPIP 1.8.3 allows remote attackers to execute arbitrary PHP code via a URL in the url parameter.
How to fix CVE-2006-1702
To remediate CVE-2006-1702, upgrade the affected package to a fixed version below.
- Debian/spip—upgrade to 2.0.6-1 or later
Is CVE-2006-1702 being exploited?
Low — EPSS is 2.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.0.6-1