cbcvebase.
CVE-2013-2118
published 2013-07-09

CVE-2013-2118: SPIP 3.0.x before 3.0.9, 2.1.x before 2.1.22, and 2.0.x before 2.0.23 allows remote attackers to gain privileges and "take editorial control" via vectors…

PriorityP357high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
8.98%
94.6th percentile
SPIP 3.0.x before 3.0.9, 2.1.x before 2.1.22, and 2.0.x before 2.0.23 allows remote attackers to gain privileges and "take editorial control" via vectors related to ecrire/inc/filtres.php.

Affected

57 ranges· showing 25
VendorProductVersion rangeFixed in
debianspip< spip 2.1.22-1 (bullseye)spip 2.1.22-1 (bullseye)
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip
spipspip

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.