USN-4536-1

Source
https://ubuntu.com/security/notices/USN-4536-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4536-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-4536-1
Related
Published
2020-09-24T16:01:23.297550Z
Modified
2020-09-24T16:01:23.297550Z
Summary
spip vulnerabilities
Details

Youssouf Boulouiz discovered that SPIP incorrectly handled login error messages. A remote attacker could potentially exploit this to conduct cross-site scripting (XSS) attacks. (CVE-2019-16392)

Gilles Vincent discovered that SPIP incorrectly handled password reset requests. A remote attacker could possibly use this issue to cause SPIP to enumerate registered users. (CVE-2019-16394)

Guillaume Fahrner discovered that SPIP did not properly sanitize input. A remote authenticated attacker could possibly use this issue to execute arbitrary code on the host server. (CVE-2019-11071)

Sylvain Lefevre discovered that SPIP incorrectly handled user authorization. A remote attacker could possibly use this issue to modify and publish content and modify the database. (CVE-2019-16391)

It was discovered that SPIP did not properly sanitize input. A remote attacker could, through cross-site scripting (XSS) and PHP injection, exploit this to inject arbitrary web script or HTML. (CVE-2017-15736)

Alexis Zucca discovered that SPIP incorrectly handled the media plugin. A remote authenticated attacker could possibly use this issue to write to the database. (CVE-2019-19830)

Christophe Laffont discovered that SPIP incorrectly handled redirect URLs. An attacker could use this issue to cause SPIP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2019-16393)

References

Affected packages

Ubuntu:18.04:LTS / spip

Package

Name
spip
Purl
pkg:deb/ubuntu/spip@3.1.4-4~deb9u3build0.18.04.1?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.1.4-4~deb9u3build0.18.04.1

Affected versions

3.*

3.1.4-3

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "3.1.4-4~deb9u3build0.18.04.1",
            "binary_name": "spip"
        }
    ]
}