NuytsTech Security

CVE-2020-28984

by ·

prive/formulaires/configurer_preferences.php in SPIP before 3.2.8 does not properly validate the couleur, display, display_navigation, display_outils, imessage, and spip_ecran parameters.

Date published : 2020-11-23

https://www.debian.org/security/2020/dsa-4798

https://git.spip.net/spip/spip/commit/ae4267eba1022dabc12831ddb021c5d6e09040f8

Tags: