CVE-2009-3041

Source
https://cve.org/CVERecord?id=CVE-2009-3041
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-3041.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2009-3041
Downstream
Published
2009-09-01T18:30:04Z
Modified
2026-04-10T03:40:53.063666Z
Summary
[none]
Details

SPIP 1.9 before 1.9.2i and 2.0.x through 2.0.8 does not use proper access control for (1) ecrire/exec/install.php and (2) ecrire/index.php, which allows remote attackers to conduct unauthorized activities related to installation and backups, as exploited in the wild in August 2009.

References

Affected packages