Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2024-8517 — External Control of File Name or Path in Spip

CWE-73 — External Control of File Name or Path CWE-78 — OS Command Injection CWE-646 — Reliance on File Name or Extension of Externally-Supplied File9 documents8 sources

Severity

9.8CRITICALNVD

OSV6.1

EPSS

93.2%

top 0.20%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Spip Debian Spip

Timeline

PublishedSep 6

Latest updateMar 4

Description

SPIP before 4.3.2, 4.2.16, and 4.1.18 is vulnerable to a command injection issue. A remote and unauthenticated attacker can execute arbitrary operating system commands by sending a crafted multipart file upload HTTP request.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages5 packages

▶NVDspip/spip4.0.0 — 4.1.18+3

▶debiandebian/spip< spip 4.3.2+dfsg-1 (forky)

▶Debianspip/spip< 4.3.2+dfsg-1+1

▶Ubuntuspip/spip< 3.1.4-4~deb9u5ubuntu0.1~esm2+1

▶CVEListV5spip/spip4.3.0 — 4.3.1+1

🔴Vulnerability Details

OSV

spip vulnerabilities↗2025-03-04

▶

GHSA

GHSA-7w4r-xxr6-xrcj: SPIP before 4↗2024-09-06

▶

OSV

CVE-2024-8517: SPIP before 4↗2024-09-06

▶

💥Exploits & PoCs

Metasploit

SPIP BigUp Plugin Unauthenticated RCE↗

▶

Nuclei

SPIP BigUp Plugin - Remote Code Execution

▶

📋Vendor Advisories

Ubuntu

SPIP vulnerabilities↗2025-03-04

▶

Debian

CVE-2024-8517: spip - SPIP before 4.3.2, 4.2.16, and 4.1.18 is vulnerable to a command injection issu...↗2024

▶

🕵️Threat Intelligence

Greynoiseio

NoiseLetter September 2024↗

▶