CVE-2008-5813
EPSS 0.71%
Description
SQL injection vulnerability in inc/rubriques.php in SPIP 1.8 before 1.8.3b, 1.9 before 1.9.2g, and 2.0 before 2.0.2 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: some of these details are obtained from third party information.
How to fix CVE-2008-5813
To remediate CVE-2008-5813, upgrade the affected package to a fixed version below.
- Debian/spip—upgrade to 2.0.6-1 or later
Is CVE-2008-5813 being exploited?
Low — EPSS is 0.7%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.0.6-1