Authenticated Arbitrary File Upload Vulnerability in SPIP Documents Module
CVE-2024-53619
6.3MEDIUM
What is CVE-2024-53619?
An identified vulnerability in the Documents module of SPIP version 4.3.3 presents an arbitrary file upload risk that can be exploited by authenticated users. By uploading specially crafted PDF files, attackers can potentially execute arbitrary code on the server, leading to unauthorized access and serious security implications. This vulnerability necessitates prompt attention from administrators using this version of SPIP to mitigate potential exploitation risks.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
References
CVSS V3.1
Score:
6.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved